CVE-2007-1179

high

Description

WebAPP before 0.9.9.5 does not properly manage e-mail addresses in certain contexts related to (1) the Recommend feature, Email Article (2) senders and (3) recipients, (4) New User Approval, (5) Edit Profiles, (6) the Newsletter Subscription form, (7) the Recommend form, and (8) sending of articles, which has unknown impact, and remote attack vectors related to spam attacks and possibly other attacks.

References

http://www.web-app.org/cgi-bin/index.cgi?action=viewnews&id=250

http://www.vupen.com/english/advisories/2007/0604

http://www.securityfocus.com/bid/22563

http://secunia.com/advisories/24080

http://osvdb.org/33284

Details

Source: Mitre, NVD

Published: 2007-03-02

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 8.2

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N

Severity: High

EPSS

EPSS: 0.00375