CVE-2007-3577 - Vulnerability Details - OpenCVE

PHPIDS before 20070703 does not properly handle use of the substr method in (1) document.location.search and (2) document.referrer; (3) certain use of document.location.hash; (4) certain "window[eval" and similar expressions; (5) certain Function expressions; (6) certain '=' expressions, as demonstrated by a 'whatever="something"' sequence; and (7) certain "with" expressions, which allows remote attackers to inject arbitrary web script.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Phpids	Phpids

Configuration 1 [-]

cpe:2.3:a:phpids:phpids:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://groups.google.com/group/php-ids/browse_thread/thread/3ec15f69d6b3dba0
http://osvdb.org/45759
http://sla.ckers.org/forum/read.php?2%2C13209%2C13218
https://exchange.xforce.ibmcloud.com/vulnerabilities/35489

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-07-05T20:00:00

Updated: 2024-08-07T14:21:36.415Z

Reserved: 2007-07-05T00:00:00

Link: CVE-2007-3577

Vulnrichment

No data.

NVD

Status : Modified

Published: 2007-07-05T20:30:00.000

Modified: 2024-11-21T00:33:34.450

Link: CVE-2007-3577

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-07-02T00:00:00", "descriptions": [{"lang": "en", "value": "PHPIDS before 20070703 does not properly handle use of the substr method in (1) document.location.search and (2) document.referrer; (3) certain use of document.location.hash; (4) certain \"window[eval\" and similar expressions; (5) certain Function expressions; (6) certain '=' expressions, as demonstrated by a 'whatever=\"something\"' sequence; and (7) certain \"with\" expressions, which allows remote attackers to inject arbitrary web script."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-28T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "45759", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/45759"}, {"tags": ["x_refsource_MISC"], "url": "http://sla.ckers.org/forum/read.php?2%2C13209%2C13218"}, {"name": "phpids-multiple-xss(35489)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/35489"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://groups.google.com/group/php-ids/browse_thread/thread/3ec15f69d6b3dba0"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-3577", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "PHPIDS before 20070703 does not properly handle use of the substr method in (1) document.location.search and (2) document.referrer; (3) certain use of document.location.hash; (4) certain \"window[eval\" and similar expressions; (5) certain Function expressions; (6) certain '=' expressions, as demonstrated by a 'whatever=\"something\"' sequence; and (7) certain \"with\" expressions, which allows remote attackers to inject arbitrary web script."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "45759", "refsource": "OSVDB", "url": "http://osvdb.org/45759"}, {"name": "http://sla.ckers.org/forum/read.php?2,13209,13218", "refsource": "MISC", "url": "http://sla.ckers.org/forum/read.php?2,13209,13218"}, {"name": "phpids-multiple-xss(35489)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/35489"}, {"name": "http://groups.google.com/group/php-ids/browse_thread/thread/3ec15f69d6b3dba0", "refsource": "CONFIRM", "url": "http://groups.google.com/group/php-ids/browse_thread/thread/3ec15f69d6b3dba0"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T14:21:36.415Z"}, "title": "CVE Program Container", "references": [{"name": "45759", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/45759"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://sla.ckers.org/forum/read.php?2%2C13209%2C13218"}, {"name": "phpids-multiple-xss(35489)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/35489"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://groups.google.com/group/php-ids/browse_thread/thread/3ec15f69d6b3dba0"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-3577", "datePublished": "2007-07-05T20:00:00", "dateReserved": "2007-07-05T00:00:00", "dateUpdated": "2024-08-07T14:21:36.415Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:phpids:phpids:*:*:*:*:*:*:*:*", "matchCriteriaId": "9BE66088-CEDD-41AC-8A44-B8BB32E2BCA7", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "PHPIDS before 20070703 does not properly handle use of the substr method in (1) document.location.search and (2) document.referrer; (3) certain use of document.location.hash; (4) certain \"window[eval\" and similar expressions; (5) certain Function expressions; (6) certain '=' expressions, as demonstrated by a 'whatever=\"something\"' sequence; and (7) certain \"with\" expressions, which allows remote attackers to inject arbitrary web script."}, {"lang": "es", "value": "PHPIDS anterior al 03/07/2007 no maneja adecuadamente el m\u00e9todo substr en (1) document.location.search y (2) document.referrer; (3) cierto uso de document.location.hash; (4) cierta expresi\u00f3n \"window[eval\" y expresiones similares; (5) ciertas expresiones de funciones; (6) ciertas expresiones '=', como ha sido demostrado por la secuencia 'whatever=\"something\"'; y (7) ciertas expresiones \"with\", lo cual permite a atacantes remotos inyectar secuencias de comandos web o HTML de su elecci\u00f3n."}], "id": "CVE-2007-3577", "lastModified": "2024-11-21T00:33:34.450", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-07-05T20:30:00.000", "references": [{"source": "cve@mitre.org", "url": "http://groups.google.com/group/php-ids/browse_thread/thread/3ec15f69d6b3dba0"}, {"source": "cve@mitre.org", "url": "http://osvdb.org/45759"}, {"source": "cve@mitre.org", "url": "http://sla.ckers.org/forum/read.php?2%2C13209%2C13218"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/35489"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://groups.google.com/group/php-ids/browse_thread/thread/3ec15f69d6b3dba0"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/45759"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://sla.ckers.org/forum/read.php?2%2C13209%2C13218"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/35489"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}