CVE-2007-1185

Published: Mar 2, 2007Modified: Apr 23, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

The (1) Search, (2) Edit Profile, (3) Recommend, and (4) User Approval forms in WebAPP before 0.9.9.5 use hidden inputs, which has unknown impact and remote attack vectors.

Affected (8)

Products: Web App.org: Webapp

1 product

Configuration A

8 vulnerable

Vulnerable Software	Affected Versions
Web App.org Webapp	Version 0.9.9.1
Web App.org Webapp	Version 0.9.9.2.1
Web App.org Webapp	Version 0.9.9.2
Web App.org Webapp	Version 0.9.9.3.1
Web App.org Webapp	Version 0.9.9.3.2
Web App.org Webapp	Version 0.9.9.3
Web App.org Webapp	Version 0.9.9.4
Web App.org Webapp	Version 0.9.9

References (10)

http://osvdb.org/33295

Source: cve@mitre.org

http://secunia.com/advisories/24080

Source: cve@mitre.org

Vendor Advisory

http://www.securityfocus.com/bid/22563

Source: cve@mitre.org

PatchVendor Advisory

http://www.vupen.com/english/advisories/2007/0604

Source: cve@mitre.org

http://www.web-app.org/cgi-bin/index.cgi?action=viewnews&id=250

Source: cve@mitre.org

http://osvdb.org/33295

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/24080

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securityfocus.com/bid/22563

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.vupen.com/english/advisories/2007/0604

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.web-app.org/cgi-bin/index.cgi?action=viewnews&id=250

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.