Webapp.Org Webapp Multiple Remote Vulnerabilities
BID:22563
Info
Webapp.Org Webapp Multiple Remote Vulnerabilities
| Bugtraq ID: | 22563 |
| Class: | Unknown |
| CVE: |
CVE-2007-1178 CVE-2007-1179 CVE-2007-1180 CVE-2007-1181 CVE-2007-1182 CVE-2007-1183 CVE-2007-1184 CVE-2007-1185 CVE-2007-1186 CVE-2007-1187 CVE-2007-1188 CVE-2007-1174 |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 14 2007 12:00AM |
| Updated: | Jul 06 2016 02:40PM |
| Credit: | The vendor reported these issues. |
| Vulnerable: |
WebAPP WebAPP 0.9.9 .3.2 WebAPP WebAPP 0.9.9 .2.1 WebAPP WebAPP 0.9.9 .2 WebAPP WebAPP 0.9.9 WebAPP WebAPP 0.9.9.4 |
| Not Vulnerable: |
WebAPP WebAPP 0.9.9.5 |
Discussion
Webapp.Org Webapp Multiple Remote Vulnerabilities
WebAPP is prone to multiple remote vulnerabilities. These issues include multiple cross-site scripting vulnerabilities, multiple HTML-injection vulnerabilities, multiple information-disclosure vulnerabilities, multiple unauthorized-access vulnerabilities, and various other vulnerabilities with unknown impacts.
An attacker can exploit these issues to compromise the affected application. This may include stealing cookie-based authentication credentials, executing arbitrary code within the context of the affected browser, gain unauthorized access to the affected application, and obtain sensitive information. Other attacks are also possible.
WebAPP is prone to multiple remote vulnerabilities. These issues include multiple cross-site scripting vulnerabilities, multiple HTML-injection vulnerabilities, multiple information-disclosure vulnerabilities, multiple unauthorized-access vulnerabilities, and various other vulnerabilities with unknown impacts.
An attacker can exploit these issues to compromise the affected application. This may include stealing cookie-based authentication credentials, executing arbitrary code within the context of the affected browser, gain unauthorized access to the affected application, and obtain sensitive information. Other attacks are also possible.
Exploit / POC
Webapp.Org Webapp Multiple Remote Vulnerabilities
Most of these issues may be exploited through a web client. Some of the issues may be exploited by enticing an unsuspecting user to follow a malicious URI.
Most of these issues may be exploited through a web client. Some of the issues may be exploited by enticing an unsuspecting user to follow a malicious URI.
Solution / Fix
Webapp.Org Webapp Multiple Remote Vulnerabilities
Solution:
The vendor released an update to address these issues. Please see the references for more information.
Solution:
The vendor released an update to address these issues. Please see the references for more information.
References
Webapp.Org Webapp Multiple Remote Vulnerabilities
References:
References:
- Web-app.org WebAPP Home Page (Web-app.org)