Vulnerability-Lookup

CVE-2007-1454 (GCVE-0-2007-1454)

Vulnerability from cvelistv5 – Published: 2007-03-14 22:00 – Updated: 2024-08-07 12:59

Summary

ext/filter in PHP 5.2.0, when FILTER_SANITIZE_STRING is used with the FILTER_FLAG_STRIP_LOW flag, does not properly strip HTML tags, which allows remote attackers to conduct cross-site scripting (XSS) attacks via HTML with a '<' character followed by certain whitespace characters, which passes one filter but is collapsed into a valid tag, as demonstrated using %0b.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	http://secunia.com/advisories/25056	third-party-advisoryx_refsource_SECUNIA
	http://www.debian.org/security/2007/dsa-1283	vendor-advisoryx_refsource_DEBIAN
	http://www.securityfocus.com/bid/22914	vdb-entryx_refsource_BID
	http://secunia.com/advisories/25062	third-party-advisoryx_refsource_SECUNIA
	http://www.mandriva.com/security/advisories?name=…	vendor-advisoryx_refsource_MANDRIVA
	http://www.php-security.org/MOPB/MOPB-18-2007.html	x_refsource_MISC
	http://www.novell.com/linux/security/advisories/2…	vendor-advisoryx_refsource_SUSE

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T12:59:08.283Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "25056",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/25056"
          },
          {
            "name": "DSA-1283",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2007/dsa-1283"
          },
          {
            "name": "22914",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/22914"
          },
          {
            "name": "25062",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/25062"
          },
          {
            "name": "MDKSA-2007:090",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:090"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.php-security.org/MOPB/MOPB-18-2007.html"
          },
          {
            "name": "SUSE-SA:2007:032",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://www.novell.com/linux/security/advisories/2007_32_php.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2007-03-11T05:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "ext/filter in PHP 5.2.0, when FILTER_SANITIZE_STRING is used with the FILTER_FLAG_STRIP_LOW flag, does not properly strip HTML tags, which allows remote attackers to conduct cross-site scripting (XSS) attacks via HTML with a \u0027\u003c\u0027 character followed by certain whitespace characters, which passes one filter but is collapsed into a valid tag, as demonstrated using %0b."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2007-05-02T13:00:00.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "25056",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/25056"
        },
        {
          "name": "DSA-1283",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2007/dsa-1283"
        },
        {
          "name": "22914",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/22914"
        },
        {
          "name": "25062",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/25062"
        },
        {
          "name": "MDKSA-2007:090",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:090"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.php-security.org/MOPB/MOPB-18-2007.html"
        },
        {
          "name": "SUSE-SA:2007:032",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://www.novell.com/linux/security/advisories/2007_32_php.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2007-1454",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "ext/filter in PHP 5.2.0, when FILTER_SANITIZE_STRING is used with the FILTER_FLAG_STRIP_LOW flag, does not properly strip HTML tags, which allows remote attackers to conduct cross-site scripting (XSS) attacks via HTML with a \u0027\u003c\u0027 character followed by certain whitespace characters, which passes one filter but is collapsed into a valid tag, as demonstrated using %0b."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "25056",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/25056"
            },
            {
              "name": "DSA-1283",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2007/dsa-1283"
            },
            {
              "name": "22914",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/22914"
            },
            {
              "name": "25062",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/25062"
            },
            {
              "name": "MDKSA-2007:090",
              "refsource": "MANDRIVA",
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:090"
            },
            {
              "name": "http://www.php-security.org/MOPB/MOPB-18-2007.html",
              "refsource": "MISC",
              "url": "http://www.php-security.org/MOPB/MOPB-18-2007.html"
            },
            {
              "name": "SUSE-SA:2007:032",
              "refsource": "SUSE",
              "url": "http://www.novell.com/linux/security/advisories/2007_32_php.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2007-1454",
    "datePublished": "2007-03-14T22:00:00.000Z",
    "dateReserved": "2007-03-14T04:00:00.000Z",
    "dateUpdated": "2024-08-07T12:59:08.283Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CERTA-2007-AVI-144

Vulnerability from certfr_avis - Published: 2007-03-27 - Updated: 2007-03-27

Plusieurs vulnérabilités découvertes dans PHP (PHP : Hypertext Processor) permettent à un utilisateur distant malintentionné de réaliser de nombreuses actions malveillantes sur le système vulnérable.

Ces vulnérabilités peuvent être exploitées à distance afin de contourner la politique de sécurité, d'exécuter du code arbitraire, de provoquer un déni de service en consommant de façon excessive les ressources du processeur et de porter atteinte à la confidentialité et à l'intégrité des données du système présentes en mémoire.

Solution

Appliquer les mises à jour de sécurité PHP en passant à la version 4.4.5 ou 5.2.1 disponibles aux adresses suivantes :

http://www.php.net/releases/4_4_5.php

http://www.php.net/releases/5_2_1.php

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	PHP	PHP	PHP antérieur à la version 4.4.5 ;
	PHP	PHP	PHP antérieur à la version 5.2.1.

References

Title

Publication Time

Tags

Bulletin de sécurité Gentoo GLSA-200703-21 du 20 mars 2007	None	vendor-advisory
Bulletin de sécurité RedHat RHSA-2007:0076 du 19 février 2007 :	-	other
Bulletin de sécurité Debian DSA 1264 du 07 mars 2007 :	-	other
Bulletin de sécurité RedHat RHSA-2007:0089 du 26 février 2007 :	-	other
Bulletin de sécurité Ubuntu USN-431-1 du 07 mars 2007 :	-	other
Mise à jour de sécurité PHP version 4.4.5 :	-	other
Bulletin de sécurité Mandriva MDKSA-2007:048 du 22 février 2007 :	-	other
Bulletin de sécurité Avaya ASA-2007-0076 du 06 mars 2007 :	-	other
Bulletin de sécurité SuSE SUSE-SA:2007:020 du 15 mars 2007 :	-	other
Bulletin de sécurité Avaya ASA-2007-0088 du 26 mars 2007 :	-	other
Mise à jour de sécurité PHP version 5.2.1 :	-	other
Bulletin de sécurité Ubuntu USN-423-1 du 20 février 2007 :	-	other
Bulletin de sécurité RedHat RHSA-2007:0081 du 21 février 2007 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "PHP ant\u00e9rieur \u00e0 la version 4.4.5 ;",
      "product": {
        "name": "PHP",
        "vendor": {
          "name": "PHP",
          "scada": false
        }
      }
    },
    {
      "description": "PHP ant\u00e9rieur \u00e0 la version 5.2.1.",
      "product": {
        "name": "PHP",
        "vendor": {
          "name": "PHP",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nAppliquer les mises \u00e0 jour de s\u00e9curit\u00e9 PHP en passant \u00e0 la version 4.4.5\nou 5.2.1 disponibles aux adresses suivantes :\n\n    http://www.php.net/releases/4_4_5.php\n\n    http://www.php.net/releases/5_2_1.php\n\n  \n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2007-0988",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0988"
    },
    {
      "name": "CVE-2007-1380",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1380"
    },
    {
      "name": "CVE-2007-0905",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0905"
    },
    {
      "name": "CVE-2007-1452",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1452"
    },
    {
      "name": "CVE-2007-1376",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1376"
    },
    {
      "name": "CVE-2007-1375",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1375"
    },
    {
      "name": "CVE-2007-0907",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0907"
    },
    {
      "name": "CVE-2007-0906",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0906"
    },
    {
      "name": "CVE-2007-1453",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1453"
    },
    {
      "name": "CVE-2007-0909",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0909"
    },
    {
      "name": "CVE-2007-0910",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0910"
    },
    {
      "name": "CVE-2007-0908",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0908"
    },
    {
      "name": "CVE-2007-1383",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1383"
    },
    {
      "name": "CVE-2007-1454",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1454"
    },
    {
      "name": "CVE-2007-1286",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1286"
    }
  ],
  "initial_release_date": "2007-03-27T00:00:00",
  "last_revision_date": "2007-03-27T00:00:00",
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 RedHat RHSA-2007:0076 du 19 f\u00e9vrier    2007 :",
      "url": "http://rhn.redhat.com/errata/RHSA-2007-0076.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Debian DSA 1264 du 07 mars 2007 :",
      "url": "http://www.debian.org/security/2007/dsa-1264"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 RedHat RHSA-2007:0089 du 26 f\u00e9vrier    2007 :",
      "url": "http://rhn.redhat.com/errata/RHSA-2007-0089.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-431-1 du 07 mars 2007 :",
      "url": "http://www.ubuntulinux.org/usn/usn-431-1"
    },
    {
      "title": "Mise \u00e0 jour de s\u00e9curit\u00e9 PHP version 4.4.5 :",
      "url": "http://www.php.net/releases/4_4_5.php"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Mandriva MDKSA-2007:048 du 22 f\u00e9vrier    2007 :",
      "url": "http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2007:048"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Avaya ASA-2007-0076 du 06 mars 2007 :",
      "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-0076.htm"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 SuSE SUSE-SA:2007:020 du 15 mars 2007    :",
      "url": "http://lists.suse.com/archive/archive/suse-security-announce/2007-Mar/0003.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Avaya ASA-2007-0088 du 26 mars 2007 :",
      "url": "http://support.avaya.com/elmodocs2/security/ASA-2007-0088.htm"
    },
    {
      "title": "Mise \u00e0 jour de s\u00e9curit\u00e9 PHP version 5.2.1 :",
      "url": "http://www.php.net/releases/5_2_1.php"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-423-1 du 20 f\u00e9vrier 2007 :",
      "url": "http://www.ubuntulinux.org/usn/usn-423-1"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 RedHat RHSA-2007:0081 du 21 f\u00e9vrier    2007 :",
      "url": "http://rhn.redhat.com/errata/RHSA-2007-0081.html"
    }
  ],
  "reference": "CERTA-2007-AVI-144",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2007-03-27T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "Plusieurs vuln\u00e9rabilit\u00e9s d\u00e9couvertes dans PHP (PHP : Hypertext\nProcessor) permettent \u00e0 un utilisateur distant malintentionn\u00e9 de\nr\u00e9aliser de nombreuses actions malveillantes sur le syst\u00e8me vuln\u00e9rable.\n\n  \n\nCes vuln\u00e9rabilit\u00e9s peuvent \u00eatre exploit\u00e9es \u00e0 distance afin de contourner\nla politique de s\u00e9curit\u00e9, d\u0027ex\u00e9cuter du code arbitraire, de provoquer un\nd\u00e9ni de service en consommant de fa\u00e7on excessive les ressources du\nprocesseur et de porter atteinte \u00e0 la confidentialit\u00e9 et \u00e0 l\u0027int\u00e9grit\u00e9\ndes donn\u00e9es du syst\u00e8me pr\u00e9sentes en m\u00e9moire.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans PHP",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Gentoo GLSA-200703-21 du 20 mars 2007",
      "url": "http://www.gentoo.org/security/en/glsa/glsa-200703-21.xml"
    }
  ]
}

CERTA-2007-AVI-201

Vulnerability from certfr_avis - Published: 2007-05-07 - Updated: 2007-05-29

Plusieurs vulnérabilités avaient été identifiées à l'occasion du MoPB (le Month Of PHP Bugs). L'exploitation de ces dernières peut avoir divers impacts sur le serveur vulnérable. Les mises à jour récentes de PHP corrigent la plupart de ces vulnérabilités.

Description

Plusieurs vulnérabilités avaient été identifiées en mars 2007 à l'occasion du MoPB (le Month Of PHP Bugs). A cette occasion, le CERTA a publié dans son bulletin d'actualité CERTA-2007-ACT-012 une revue des plus importantes d'entre elles. Les conséquences de l'exploitation de ces dernières sont diverses, pouvant être un dysfonctionnement du serveur vulnérable ou l'exécution de code arbitraire sur celui-ci.

Solution

Se référer aux bulletins de sécurité des différents éditeurs pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	PHP	PHP	PHP 5, pour les versions antérieures à 5.2.2.
	PHP	PHP	PHP 4, pour les versions antérieures à 4.4.7 ;

References

Title

Publication Time

Tags

Bulletins des mises à jour PHP du 03 mai 2007	None	vendor-advisory
Mise à jour de sécurité Fedora Core 6 du 18 avril 2007 :	-	other
Bulletin de sécurité Ubuntu USN-455-1 du 27 avril 2007 :	-	other
Bulletin de sécurité Mandriva MDKSA-2007:090 du 18 avril 2007 :	-	other
Site de téléchargement des dernières versions PHP :	-	other
Note de changement de version pour PHP 4 version 4.4.7 :	-	other
Bulletin de sécurité Mandriva MDKSA-2007:087 du 18 avril 2007 :	-	other
Bulletin de sécurité Mandriva MDKSA-2007:091 du 18 avril 2007 :	-	other
Bulletin de sécurité Gentoo GLSA-200705-19 du 26 mai 2007 :	-	other
Bulletin d'actualité CERTA-2007-ACT-012 du 23 mars 2007 :	-	other
Bulletin de sécurité SuSE SUSE-SA:2007:032 du 23 mai 2007 :	-	other
Note de changement de version pour PHP 5 version 5.2.2 :	-	other
Bulletin de sécurité Debian DSA 1283-1 du 29 avril 2007 :	-	other
Bulletin de sécurité Mandriva MDKSA-2007:089 du 18 avril 2007 :	-	other
Bulletin de sécurité RedHat RHSA-2007:0155 du 16 avril 2007 :	-	other
Bulletin de sécurité Mandriva MDKSA-2007:088 du 18 avril 2007 :	-	other
Bulletin de sécurité RedHat RHSA-2007:0153 du 20 avril 2007 :	-	other
Bulletin de sécurité Debian DSA 1282-1 du 26 avril 2007 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "PHP 5, pour les versions ant\u00e9rieures \u00e0 5.2.2.",
      "product": {
        "name": "PHP",
        "vendor": {
          "name": "PHP",
          "scada": false
        }
      }
    },
    {
      "description": "PHP 4, pour les versions ant\u00e9rieures \u00e0 4.4.7 ;",
      "product": {
        "name": "PHP",
        "vendor": {
          "name": "PHP",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nPlusieurs vuln\u00e9rabilit\u00e9s avaient \u00e9t\u00e9 identifi\u00e9es en mars 2007 \u00e0\nl\u0027occasion du MoPB (le Month Of PHP Bugs). A cette occasion, le CERTA a\npubli\u00e9 dans son bulletin d\u0027actualit\u00e9 CERTA-2007-ACT-012 une revue des\nplus importantes d\u0027entre elles. Les cons\u00e9quences de l\u0027exploitation de\nces derni\u00e8res sont diverses, pouvant \u00eatre un dysfonctionnement du\nserveur vuln\u00e9rable ou l\u0027ex\u00e9cution de code arbitraire sur celui-ci.\n\n## Solution\n\nSe r\u00e9f\u00e9rer aux bulletins de s\u00e9curit\u00e9 des diff\u00e9rents \u00e9diteurs pour\nl\u0027obtention des correctifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2007-1583",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1583"
    },
    {
      "name": "CVE-2007-1889",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1889"
    },
    {
      "name": "CVE-2007-1380",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1380"
    },
    {
      "name": "CVE-2007-1711",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1711"
    },
    {
      "name": "CVE-2007-1900",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1900"
    },
    {
      "name": "CVE-2007-1718",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1718"
    },
    {
      "name": "CVE-2007-1887",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1887"
    },
    {
      "name": "CVE-2007-1376",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1376"
    },
    {
      "name": "CVE-2007-1521",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1521"
    },
    {
      "name": "CVE-2007-1375",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1375"
    },
    {
      "name": "CVE-2007-1001",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1001"
    },
    {
      "name": "CVE-2007-0455",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0455"
    },
    {
      "name": "CVE-2007-1700",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1700"
    },
    {
      "name": "CVE-2007-1453",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1453"
    },
    {
      "name": "CVE-2007-1824",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1824"
    },
    {
      "name": "CVE-2007-1777",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1777"
    },
    {
      "name": "CVE-2007-1454",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1454"
    },
    {
      "name": "CVE-2007-1286",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1286"
    }
  ],
  "initial_release_date": "2007-05-07T00:00:00",
  "last_revision_date": "2007-05-29T00:00:00",
  "links": [
    {
      "title": "Mise \u00e0 jour de s\u00e9curit\u00e9 Fedora Core 6 du 18 avril 2007 :",
      "url": "http://download.fedora.redhat.com/pub/fedora/linux/core/updates/6/"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-455-1 du 27 avril 2007 :",
      "url": "http://www.ubuntu.com/usn/usn-455-1"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Mandriva MDKSA-2007:090 du 18 avril    2007 :",
      "url": "http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2007:090"
    },
    {
      "title": "Site de t\u00e9l\u00e9chargement des derni\u00e8res versions PHP :",
      "url": "http://fr2.php.net/downloads.php"
    },
    {
      "title": "Note de changement de version pour PHP 4 version 4.4.7 :",
      "url": "http://www.php.net/ChangeLog-4.php"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Mandriva MDKSA-2007:087 du 18 avril    2007 :",
      "url": "http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2007:087"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Mandriva MDKSA-2007:091 du 18 avril    2007 :",
      "url": "http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2007:091"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Gentoo GLSA-200705-19 du 26 mai 2007 :",
      "url": "http://www.gentoo.org/security/en/glsa/glsa-200705-19.xml"
    },
    {
      "title": "Bulletin d\u0027actualit\u00e9 CERTA-2007-ACT-012 du 23 mars 2007 :",
      "url": "http://www.certa.ssi.gouv.fr/site/CERTA-2007-ACT-012.pdf"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 SuSE SUSE-SA:2007:032 du 23 mai 2007 :",
      "url": "http://lists.suse.com/archive/suse-security-announce/2007-May/0007.html"
    },
    {
      "title": "Note de changement de version pour PHP 5 version 5.2.2 :",
      "url": "http://www.php.net/ChangeLog-5.php"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Debian DSA 1283-1 du 29 avril 2007 :",
      "url": "http://www.debian.org/security/2007/dsa-1283-1"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Mandriva MDKSA-2007:089 du 18 avril    2007 :",
      "url": "http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2007:089"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 RedHat RHSA-2007:0155 du 16 avril 2007    :",
      "url": "http://rhn.redhat.com/errata/RHSA-2007-0155.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Mandriva MDKSA-2007:088 du 18 avril    2007 :",
      "url": "http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2007:088"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 RedHat RHSA-2007:0153 du 20 avril 2007    :",
      "url": "http://rhn.redhat.com/errata/RHSA-2007-0153.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Debian DSA 1282-1 du 26 avril 2007 :",
      "url": "http://www.debian.org/security/2007/dsa-1282-1"
    }
  ],
  "reference": "CERTA-2007-AVI-201",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2007-05-07T00:00:00.000000"
    },
    {
      "description": "ajout des r\u00e9f\u0155ences aux bulletins de s\u00e9curit\u00e9 Gentoo, SuSE, Mandriva, Red Hat.",
      "revision_date": "2007-05-29T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    }
  ],
  "summary": "Plusieurs vuln\u00e9rabilit\u00e9s avaient \u00e9t\u00e9 identifi\u00e9es \u00e0 l\u0027occasion du MoPB\n(le \u003cspan class=\"textit\"\u003eMonth Of PHP Bugs\u003c/span\u003e). L\u0027exploitation de\nces derni\u00e8res peut avoir divers impacts sur le serveur vuln\u00e9rable. Les\nmises \u00e0 jour r\u00e9centes de PHP corrigent la plupart de ces vuln\u00e9rabilit\u00e9s.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans PHP",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletins des mises \u00e0 jour PHP du 03 mai 2007",
      "url": null
    }
  ]
}

FKIE_CVE-2007-1454

Vulnerability from fkie_nvd - Published: 2007-03-14 18:19 - Updated: 2025-04-09 00:30

Severity ?

Summary

References

	URL	Tags
	cve@mitre.org	http://secunia.com/advisories/25056
	cve@mitre.org	http://secunia.com/advisories/25062
	cve@mitre.org	http://www.debian.org/security/2007/dsa-1283
	cve@mitre.org	http://www.mandriva.com/security/advisories?name=MDKSA-2007:090
	cve@mitre.org	http://www.novell.com/linux/security/advisories/2007_32_php.html
	cve@mitre.org	http://www.php-security.org/MOPB/MOPB-18-2007.html
	cve@mitre.org	http://www.securityfocus.com/bid/22914
	af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/25056
	af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/25062
	af854a3a-2127-422b-91ae-364da2661108	http://www.debian.org/security/2007/dsa-1283
	af854a3a-2127-422b-91ae-364da2661108	http://www.mandriva.com/security/advisories?name=MDKSA-2007:090
	af854a3a-2127-422b-91ae-364da2661108	http://www.novell.com/linux/security/advisories/2007_32_php.html
	af854a3a-2127-422b-91ae-364da2661108	http://www.php-security.org/MOPB/MOPB-18-2007.html
	af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/22914

Impacted products

	Vendor	Product	Version
	php	php	5.2.0

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:php:php:5.2.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "CD02D837-FD28-4E0F-93F8-25E8D1C84A99",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "ext/filter in PHP 5.2.0, when FILTER_SANITIZE_STRING is used with the FILTER_FLAG_STRIP_LOW flag, does not properly strip HTML tags, which allows remote attackers to conduct cross-site scripting (XSS) attacks via HTML with a \u0027\u003c\u0027 character followed by certain whitespace characters, which passes one filter but is collapsed into a valid tag, as demonstrated using %0b."
    },
    {
      "lang": "es",
      "value": "ext/filter del PHP 5.2.0, cuando el FILTER_SANITIZE_STRING es utilizado con el flag  FILTER_FLAG_STRIP_LOW, no deshace convenientemente las etiquetas HTML, lo que permite a atacantes remotos ejecutar un ataque de secuencias de comandos en sitios cruzados (XSS) a trav\u00e9s de HTML con un caracter \u0027\u003c\u0027 seguido de ciertos caracteres de espacios en blanco, lo que hace que pasen un filtro pero se convierte en una tag v\u00e1lida, como se demuestra utilizando %0b."
    }
  ],
  "id": "CVE-2007-1454",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 4.3,
          "confidentialityImpact": "NONE",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ]
  },
  "published": "2007-03-14T18:19:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/25056"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/25062"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.debian.org/security/2007/dsa-1283"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:090"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.novell.com/linux/security/advisories/2007_32_php.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.php-security.org/MOPB/MOPB-18-2007.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/22914"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/25056"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/25062"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.debian.org/security/2007/dsa-1283"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:090"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.novell.com/linux/security/advisories/2007_32_php.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.php-security.org/MOPB/MOPB-18-2007.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/22914"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vendorComments": [
    {
      "comment": "Not vulnerable. The filter extension was not shipped in versions of PHP \nprovided for Red Hat Enterprise Linux 2.1, 3, 4, 5, Stronghold 4.0, or\nRed Hat Application Stack 1.",
      "lastModified": "2007-04-16T00:00:00",
      "organization": "Red Hat"
    }
  ],
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-7F5C-3R3H-WFV7

Vulnerability from github – Published: 2022-05-01 17:53 – Updated: 2022-05-01 17:53

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2007-1454"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2007-03-14T18:19:00Z",
    "severity": "MODERATE"
  },
  "details": "ext/filter in PHP 5.2.0, when FILTER_SANITIZE_STRING is used with the FILTER_FLAG_STRIP_LOW flag, does not properly strip HTML tags, which allows remote attackers to conduct cross-site scripting (XSS) attacks via HTML with a \u0027\u003c\u0027 character followed by certain whitespace characters, which passes one filter but is collapsed into a valid tag, as demonstrated using %0b.",
  "id": "GHSA-7f5c-3r3h-wfv7",
  "modified": "2022-05-01T17:53:51Z",
  "published": "2022-05-01T17:53:51Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-1454"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/25056"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/25062"
    },
    {
      "type": "WEB",
      "url": "http://www.debian.org/security/2007/dsa-1283"
    },
    {
      "type": "WEB",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:090"
    },
    {
      "type": "WEB",
      "url": "http://www.novell.com/linux/security/advisories/2007_32_php.html"
    },
    {
      "type": "WEB",
      "url": "http://www.php-security.org/MOPB/MOPB-18-2007.html"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/22914"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

GSD-2007-1454

Vulnerability from gsd - Updated: 2023-12-13 01:21

Details

Aliases

CVE-2007-1454

Aliases

CVE-2007-1454

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2007-1454",
    "description": "ext/filter in PHP 5.2.0, when FILTER_SANITIZE_STRING is used with the FILTER_FLAG_STRIP_LOW flag, does not properly strip HTML tags, which allows remote attackers to conduct cross-site scripting (XSS) attacks via HTML with a \u0027\u003c\u0027 character followed by certain whitespace characters, which passes one filter but is collapsed into a valid tag, as demonstrated using %0b.",
    "id": "GSD-2007-1454",
    "references": [
      "https://www.suse.com/security/cve/CVE-2007-1454.html",
      "https://www.debian.org/security/2007/dsa-1283"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2007-1454"
      ],
      "details": "ext/filter in PHP 5.2.0, when FILTER_SANITIZE_STRING is used with the FILTER_FLAG_STRIP_LOW flag, does not properly strip HTML tags, which allows remote attackers to conduct cross-site scripting (XSS) attacks via HTML with a \u0027\u003c\u0027 character followed by certain whitespace characters, which passes one filter but is collapsed into a valid tag, as demonstrated using %0b.",
      "id": "GSD-2007-1454",
      "modified": "2023-12-13T01:21:39.797169Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2007-1454",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "ext/filter in PHP 5.2.0, when FILTER_SANITIZE_STRING is used with the FILTER_FLAG_STRIP_LOW flag, does not properly strip HTML tags, which allows remote attackers to conduct cross-site scripting (XSS) attacks via HTML with a \u0027\u003c\u0027 character followed by certain whitespace characters, which passes one filter but is collapsed into a valid tag, as demonstrated using %0b."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "25056",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/25056"
          },
          {
            "name": "DSA-1283",
            "refsource": "DEBIAN",
            "url": "http://www.debian.org/security/2007/dsa-1283"
          },
          {
            "name": "22914",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/22914"
          },
          {
            "name": "25062",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/25062"
          },
          {
            "name": "MDKSA-2007:090",
            "refsource": "MANDRIVA",
            "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:090"
          },
          {
            "name": "http://www.php-security.org/MOPB/MOPB-18-2007.html",
            "refsource": "MISC",
            "url": "http://www.php-security.org/MOPB/MOPB-18-2007.html"
          },
          {
            "name": "SUSE-SA:2007:032",
            "refsource": "SUSE",
            "url": "http://www.novell.com/linux/security/advisories/2007_32_php.html"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:php:php:5.2.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2007-1454"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "ext/filter in PHP 5.2.0, when FILTER_SANITIZE_STRING is used with the FILTER_FLAG_STRIP_LOW flag, does not properly strip HTML tags, which allows remote attackers to conduct cross-site scripting (XSS) attacks via HTML with a \u0027\u003c\u0027 character followed by certain whitespace characters, which passes one filter but is collapsed into a valid tag, as demonstrated using %0b."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.php-security.org/MOPB/MOPB-18-2007.html",
              "refsource": "MISC",
              "tags": [],
              "url": "http://www.php-security.org/MOPB/MOPB-18-2007.html"
            },
            {
              "name": "DSA-1283",
              "refsource": "DEBIAN",
              "tags": [],
              "url": "http://www.debian.org/security/2007/dsa-1283"
            },
            {
              "name": "25062",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/25062"
            },
            {
              "name": "22914",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/22914"
            },
            {
              "name": "MDKSA-2007:090",
              "refsource": "MANDRIVA",
              "tags": [],
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:090"
            },
            {
              "name": "SUSE-SA:2007:032",
              "refsource": "SUSE",
              "tags": [],
              "url": "http://www.novell.com/linux/security/advisories/2007_32_php.html"
            },
            {
              "name": "25056",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/25056"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 4.3,
            "confidentialityImpact": "NONE",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": true
        }
      },
      "lastModifiedDate": "2008-09-05T21:20Z",
      "publishedDate": "2007-03-14T18:19Z"
    }
  }
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2007-1454 (GCVE-0-2007-1454)

CERTA-2007-AVI-144

Solution

CERTA-2007-AVI-201

Description

Solution

FKIE_CVE-2007-1454

GHSA-7F5C-3R3H-WFV7

GSD-2007-1454

Tags

Sightings

Nomenclature