CVE-2007-2907

Unspecified vulnerability in SSL-Explorer before 0.2.13 allows remote authenticated users to enter redirect URLs containing (1) JavaScript or (2) HTTP headers via an unspecified vector, possibly the forwardTo parameter to redirect.do. NOTE: the impact might be cross-site scripting (XSS) or HTTP request smuggling.

Published: May 30, 2007
Updated: Apr 13, 2023
CVE: CVE-2007-2907
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.9
AV:N/AC:M/Au:S/C:P/I:P/A:N

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
ssl-explorer / ssl-explorer	-	0.2.12.x

http://osvdb.org/36913
http://osvdb.org/36915
http://secunia.com/advisories/25512
http://sourceforge.net/forum/forum.php?forum_id=690648
http://www.securityfocus.com/bid/24319
http://www.vupen.com/english/advisories/2007/2057

Vulnerability Database

CVE-2007-2907