Vulnerabilities > WEB APP ORG > Webapp > 0.9.9.4
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-03-02 | CVE-2007-1181 | Remote vulnerability in Webapp.Org Webapp WebAPP before 0.9.9.5 passes (1) Unused Informations and (2) the username through Edit Profile forms, which has unknown impact and attack vectors. | 5.0 |
| 2007-03-02 | CVE-2007-1177 | Cross-Site Scripting vulnerability in WebAPP WebAPP before 0.9.9.5 does not properly filter certain characters in contexts related to (1) the query string, (2) Profiles, (3) the Forum Post icon field, (4) the Edit Profile, and (5) the Gallery, which has unknown impact and remote attack vectors, possibly related to cross-site scripting (XSS). network web-app-org | 5.8 |