| VID |
210053 |
| Severity |
40 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The WebAPP software is vulnerable to multiple vulnerabilities which exist in versions prior to 0.9.9.6. WebAPP is a freely available, open source Web portal system written in Perl for Unix operating systems. WebAPP version 0.9.9.5 and earlier versions could be exploited by a remote attacker to disclose sensitive information, manipulate data, compromise vulnerable systems, and conduct cross-site scripting attacks, and some which have unknown impact.
* Platforms Affected
http://www.web-app.org/cgi-bin/index.cgi?action=viewnews&id=252
http://www.web-app.org/cgi-bin/index.cgi?action=viewnews&id=254
http://newbc.blackcode.com/forum/index.php?t=msg&th=1167
http://www.frsirt.com/english/advisories/2007/0720
http://secunia.com/advisories/24227
* Platforms Affected:
WebAPP prior to 0.9.9.6
Unix Any version |
| Recommendation |
Upgrade to the latest version of WebAPP (0.9.9.6 later), available from the WebAPP Download Web page at http://www.web-app.org/cgi-bin/index.cgi?action=downloads |
| Related URL |
CVE-2007-1259,CVE-2007-1827,CVE-2007-1828,CVE-2007-1831,CVE-2007-1832 (CVE) |
| Related URL |
22691 (SecurityFocus) |
| Related URL |
32684 (ISS) |
|
