cvelistv5 - cve-2007-0362

CVE-2007-0362 (GCVE-0-2007-0362)

Vulnerability from cvelistv5

Published

2007-01-19 01:00

Modified

2024-08-07 12:19

Severity ?

CWE

Summary

Cross-site scripting (XSS) vulnerability in the RSS feed component in FreshReader before 1.0.07010600 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly related to tag attributes.

References

URL

Tags

	http://jvn.jp/jp/JVN%2395249468/index.html	third-party-advisory, x_refsource_JVN
	http://www.vupen.com/english/advisories/2007/0241	vdb-entry, x_refsource_VUPEN
	http://manual.freshreader.com/archives/2007/01/20070118_javasc.html	x_refsource_CONFIRM
	http://secunia.com/advisories/23806	third-party-advisory, x_refsource_SECUNIA
	http://www.securityfocus.com/bid/22106	vdb-entry, x_refsource_BID
	https://exchange.xforce.ibmcloud.com/vulnerabilities/31566	vdb-entry, x_refsource_XF
	http://osvdb.org/32923	vdb-entry, x_refsource_OSVDB

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T12:19:29.042Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "JVN#95249468",
            "tags": [
              "third-party-advisory",
              "x_refsource_JVN",
              "x_transferred"
            ],
            "url": "http://jvn.jp/jp/JVN%2395249468/index.html"
          },
          {
            "name": "ADV-2007-0241",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2007/0241"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://manual.freshreader.com/archives/2007/01/20070118_javasc.html"
          },
          {
            "name": "23806",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/23806"
          },
          {
            "name": "22106",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/22106"
          },
          {
            "name": "freshreader-rssfeed-xss(31566)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31566"
          },
          {
            "name": "32923",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://osvdb.org/32923"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2007-01-18T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Cross-site scripting (XSS) vulnerability in the RSS feed component in FreshReader before 1.0.07010600 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly related to tag attributes."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-07-28T12:57:01.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "JVN#95249468",
          "tags": [
            "third-party-advisory",
            "x_refsource_JVN"
          ],
          "url": "http://jvn.jp/jp/JVN%2395249468/index.html"
        },
        {
          "name": "ADV-2007-0241",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2007/0241"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://manual.freshreader.com/archives/2007/01/20070118_javasc.html"
        },
        {
          "name": "23806",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/23806"
        },
        {
          "name": "22106",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/22106"
        },
        {
          "name": "freshreader-rssfeed-xss(31566)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31566"
        },
        {
          "name": "32923",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://osvdb.org/32923"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2007-0362",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Cross-site scripting (XSS) vulnerability in the RSS feed component in FreshReader before 1.0.07010600 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly related to tag attributes."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "JVN#95249468",
              "refsource": "JVN",
              "url": "http://jvn.jp/jp/JVN%2395249468/index.html"
            },
            {
              "name": "ADV-2007-0241",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2007/0241"
            },
            {
              "name": "http://manual.freshreader.com/archives/2007/01/20070118_javasc.html",
              "refsource": "CONFIRM",
              "url": "http://manual.freshreader.com/archives/2007/01/20070118_javasc.html"
            },
            {
              "name": "23806",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/23806"
            },
            {
              "name": "22106",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/22106"
            },
            {
              "name": "freshreader-rssfeed-xss(31566)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31566"
            },
            {
              "name": "32923",
              "refsource": "OSVDB",
              "url": "http://osvdb.org/32923"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2007-0362",
    "datePublished": "2007-01-19T01:00:00.000Z",
    "dateReserved": "2007-01-18T00:00:00.000Z",
    "dateUpdated": "2024-08-07T12:19:29.042Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

cve-2007-0362

Vulnerability from jvndb

Published

2008-05-21 00:00

Modified

2008-05-21 00:00

Severity ?

() - -

Summary

Fresh Reader RSS feed cross-site scripting vulnerability

Details

Fresh Reader from sidefeed, Inc. is a server-side web application that manages RSS information. Fresh Reader contains an RSS feed cross-site scripting vulnerability.

References

Type

URL

	JVN	http://jvn.jp/en/jp/JVN95249468/index.html
	CVE	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0362
	NVD	http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-0362
	SECUNIA	http://secunia.com/advisories/23806
	FRSIRT	http://www.frsirt.com/english/advisories/2007/0241

Impacted products

Vendor

Product

sidefeed, Inc

Fresh Reader

Show details on JVN DB website