CVE-2007-3017
published 2007-07-17CVE-2007-3017: The WYSIWYG editor applet in activeWeb contentserver CMS before 5.6.2964 only filters malicious tags from articles sent to…
PriorityP422medium4CVSS 2.0
AVNACLAuSCNIPAN
EXPLOIT
EPSS
5.14%
91.4th percentile
The WYSIWYG editor applet in activeWeb contentserver CMS before 5.6.2964 only filters malicious tags from articles sent to admin/applets/wysiwyg/rendereditor.asp, which allows remote authenticated users to inject arbitrary JavaScript via a request to admin/worklist/worklist_edit.asp.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| activeweb | contentserver | <= 5.6.2929 | — |
| drupal | php_exploit_using_drupal_circulating | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-6p3j-529j-2cwq: The WYSIWYG editor applet in activeWeb contentserver CMS before 5
ghsa_unreviewed·2022-05-01
CVE-2007-3017 [MEDIUM] GHSA-6p3j-529j-2cwq: The WYSIWYG editor applet in activeWeb contentserver CMS before 5
The WYSIWYG editor applet in activeWeb contentserver CMS before 5.6.2964 only filters malicious tags from articles sent to admin/applets/wysiwyg/rendereditor.asp, which allows remote authenticated users to inject arbitrary JavaScript via a request to admin/worklist/worklist_edit.asp.
Drupal
PHP exploit using Drupal circulating - PSA-2007-001
vendor_drupal·2007-10-17·CVSS 9.3
CVE-2006-3017 [CRITICAL] PHP exploit using Drupal circulating - PSA-2007-001
Title: PHP exploit using Drupal circulating - PSA-2007-001
Vulnerability Type: PHP exploit using Drupal circulating
Description: Project: PHP Version: PHP 4 < 4.4.3, PHP 5 < 5.1.4 Security risk: Critical Exploitable from: Remote Vulnerability: unset() hash / index collision exploit using Drupal ( CVE-2006-3017 ) Description The PHP unset() Hash / Index collision vulnerability causes the unset() statement to fail in certain circumstances. Drupal uses the unset statement to eliminate all non-whitelisted global variables when the option " register_globals " is enabled for your PHP installation. As unset() can be caused to fail on vulnerable versions of PHP, arbitrary global variables can be created. This can easily lead to the execution of arbitrary PHP code with a specially crafted URL, si
No detection rules found.
No writeups or analysis indexed.
http://osvdb.org/39745http://secunia.com/advisories/26063http://securityreason.com/securityalert/2900http://www.redteam-pentesting.de/advisories/rt-sa-2007-006.phphttp://www.securityfocus.com/archive/1/473627/100/0/threadedhttp://www.securityfocus.com/bid/24898https://exchange.xforce.ibmcloud.com/vulnerabilities/35399http://osvdb.org/39745http://secunia.com/advisories/26063http://securityreason.com/securityalert/2900http://www.redteam-pentesting.de/advisories/rt-sa-2007-006.phphttp://www.securityfocus.com/archive/1/473627/100/0/threadedhttp://www.securityfocus.com/bid/24898https://exchange.xforce.ibmcloud.com/vulnerabilities/35399
2007-07-17
Published