Web-App.org: >> Webapp >> 0.9.9.5 Security Vulnerabilities
Multiple unspecified vulnerabilities in form input validation in web-app.org WebAPP before 0.9.9.6 allow remote authenticated users to corrupt data files, gain access to private files, and execute arbitrary code via "certain characters."
CVSS Score
6.0
EPSS Score
0.02
Published
2007-04-03
Multiple cross-site scripting (XSS) vulnerabilities in web-app.org WebAPP before 0.9.9.6 allow remote authenticated users to inject arbitrary web script or HTML via (1) the QUERY_STRING corresponding to drop downs or (2) various forms.
CVSS Score
3.5
EPSS Score
0.004
Published
2007-04-03
Unspecified vulnerability in web-app.org Web Automated Perl Portal (WebAPP) 0.9.9.4 to 0.9.9.6 allows remote attackers to obtain admin access by modifying cookies and performing "certain consecutive actions," possibly due to a cross-site request forgery (CSRF) vulnerability.
CVSS Score
6.8
EPSS Score
0.004
Published
2007-03-16
Multiple unspecified vulnerabilities in WebAPP before 0.9.9.6 have unknown impact and attack vectors.
CVSS Score
7.5
EPSS Score
0.005
Published
2007-03-03