Vulnerabilities > CVE-2007-1178 - Remote vulnerability in Webapp.Org Webapp

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

web-app-org

NVD

Published: 2007-03-02

Updated: 2011-03-08

Summary

WebAPP before 0.9.9.5 does not check access in certain contexts related to (1) Calendar Administration, (2) Instant Messages Administration, and (3) the Image Uploader, which has unknown impact and attack vectors.

Vulnerable Configurations

Part	Description	Count
Application	Web-App.Org WEB App.Org Webapp *	1

References

http://osvdb.org/33279
http://osvdb.org/33282
http://secunia.com/advisories/24080
http://www.securityfocus.com/bid/22563
http://www.vupen.com/english/advisories/2007/0604
http://www.web-app.org/cgi-bin/index.cgi?action=viewnews&id=250