Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web-app.org webapp 0.9.9.5 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-3242
The Menu Manager Mod for (1) web-app.net WebAPP (aka WebAPP NE) 0.9.9.3.3 up to and including 0.9.9.8, and (2) web-app.org WebAPP prior to 0.9.9.6, allows remote authenticated users to execute arbitrary commands via shell metacharacters in the titles of items in a personal menu.
Web-app.org Webapp
Web-app.net Webapp 0.9.9.5
Web-app.net Webapp 0.9.9.4
Web-app.net Webapp 0.9.9.3.4
Web-app.net Webapp 0.9.9.3.3
Web-app.net Webapp 0.9.9.7
Web-app.net Webapp 0.9.9.6
Web-app.net Webapp 0.9.9.8
NA
CVE-2007-1827
Multiple unspecified vulnerabilities in form input validation in web-app.org WebAPP prior to 0.9.9.6 allow remote authenticated users to corrupt data files, gain access to private files, and execute arbitrary code via "certain characters."
Web-app.org Webapp 0.9.9.3.4
Web-app.org Webapp 0.9.9.3.5
Web-app.org Webapp 0.9.9.3.3
Web-app.org Webapp 0.9.9.3
Web-app.org Webapp 0.9.9.3.2
Web-app.org Webapp 0.9.9.2.1
Web-app.org Webapp 0.9.9.2
Web-app.org Webapp 0.9.9.5
Web-app.org Webapp 0.9.9.1
Web-app.org Webapp 0.9.9
Web-app.org Webapp 0.9.9.3.1
Web-app.org Webapp 0.9.9.4
NA
CVE-2007-1828
Multiple cross-site scripting (XSS) vulnerabilities in web-app.org WebAPP prior to 0.9.9.6 allow remote authenticated users to inject arbitrary web script or HTML via (1) the QUERY_STRING corresponding to drop downs or (2) various forms.
Web-app.org Webapp 0.9.9.3.4
Web-app.org Webapp 0.9.9.3.5
Web-app.org Webapp 0.9.9.3.3
Web-app.org Webapp 0.9.9.3
Web-app.org Webapp 0.9.9.3.2
Web-app.org Webapp 0.9.9.2.1
Web-app.org Webapp 0.9.9.2
Web-app.org Webapp 0.9.9.5
Web-app.org Webapp 0.9.9.1
Web-app.org Webapp 0.9.9.2.2
Web-app.org Webapp 0.9.9.3.1
Web-app.org Webapp 0.9.9.4
NA
CVE-2007-1489
Unspecified vulnerability in web-app.org Web Automated Perl Portal (WebAPP) 0.9.9.4 to 0.9.9.6 allows remote malicious users to obtain admin access by modifying cookies and performing "certain consecutive actions," possibly due to a cross-site request forgery (CSRF) vul...
Web-app.org Webapp 0.9.9.6
Web-app.org Webapp 0.9.9.5
Web-app.org Webapp 0.9.9.4
NA
CVE-2007-1259
Multiple unspecified vulnerabilities in WebAPP prior to 0.9.9.6 have unknown impact and attack vectors.
Web-app.org Webapp 0.9.9.3
Web-app.org Webapp 0.9.9.3.2
Web-app.org Webapp 0.9.9.2.1
Web-app.org Webapp 0.9.9.2
Web-app.org Webapp 0.9.9.5
Web-app.org Webapp 0.9.9.1
Web-app.org Webapp 0.9.9
Web-app.org Webapp 0.9.9.3.1
Web-app.org Webapp 0.9.9.4
NA
CVE-2007-1176
Multiple cross-site scripting (XSS) vulnerabilities in WebAPP prior to 0.9.9.5 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors related to (1) Gallery Comments pages, (2) Feedback pages, (3) Search Results pages, and (4) the Statistics L...
Web-app.org Webapp
NA
CVE-2007-1177
WebAPP prior to 0.9.9.5 does not properly filter certain characters in contexts related to (1) the query string, (2) Profiles, (3) the Forum Post icon field, (4) the Edit Profile, and (5) the Gallery, which has unknown impact and remote attack vectors, possibly related to cross-s...
Web-app.org Webapp 0.9.9.3
Web-app.org Webapp 0.9.9.3.2
Web-app.org Webapp 0.9.9.2.1
Web-app.org Webapp 0.9.9.2
Web-app.org Webapp 0.9.9.1
Web-app.org Webapp 0.9.9
Web-app.org Webapp 0.9.9.3.1
Web-app.org Webapp 0.9.9.4
NA
CVE-2007-1178
WebAPP prior to 0.9.9.5 does not check access in certain contexts related to (1) Calendar Administration, (2) Instant Messages Administration, and (3) the Image Uploader, which has unknown impact and attack vectors.
Web-app.org Webapp
NA
CVE-2007-1179
WebAPP prior to 0.9.9.5 does not properly manage e-mail addresses in certain contexts related to (1) the Recommend feature, Email Article (2) senders and (3) recipients, (4) New User Approval, (5) Edit Profiles, (6) the Newsletter Subscription form, (7) the Recommend form, and (8...
Web-app.org Webapp
NA
CVE-2007-1180
WebAPP prior to 0.9.9.5 does not check referrers in certain forms, which might facilitate remote cross-site request forgery (CSRF) attacks or have other unknown impact.
Web-app.org Webapp
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »