CVE-2007-4073

Published: Jul 30, 2007Modified: Apr 23, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

Webbler CMS before 3.1.6 does not properly restrict use of "mail a friend" forms, which allows remote attackers to send arbitrary amounts of forged e-mail. NOTE: this could be leveraged for spam or phishing attacks.

Affected (1)

Products: Tincan: Webbler Cms

Tincan

1 product

Webbler Cms

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Tincan Webbler Cms	Up to 3.1.4

References (10)

http://osvdb.org/38994

Source: cve@mitre.org

http://securityreason.com/securityalert/2955

Source: cve@mitre.org

http://tincan.co.uk/?lid=1975

Source: cve@mitre.org

http://www.procheckup.com/Vulner_2007.php

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/474521/100/0/threaded

Source: cve@mitre.org

http://osvdb.org/38994