CVE-2007-1827 | Vulnerability Database | Aqua Security

Multiple unspecified vulnerabilities in form input validation in web-app.org WebAPP before 0.9.9.6 allow remote authenticated users to corrupt data files, gain access to private files, and execute arbitrary code via certain characters.

Affected Software

Name	Vendor	Start Version	End Version
Webapp	Web-app.org	0.9.9 (including)	0.9.9 (including)
Webapp	Web-app.org	0.9.9.1 (including)	0.9.9.1 (including)
Webapp	Web-app.org	0.9.9.2 (including)	0.9.9.2 (including)
Webapp	Web-app.org	0.9.9.2.1 (including)	0.9.9.2.1 (including)
Webapp	Web-app.org	0.9.9.3 (including)	0.9.9.3 (including)
Webapp	Web-app.org	0.9.9.3.1 (including)	0.9.9.3.1 (including)
Webapp	Web-app.org	0.9.9.3.2 (including)	0.9.9.3.2 (including)
Webapp	Web-app.org	0.9.9.3.3 (including)	0.9.9.3.3 (including)
Webapp	Web-app.org	0.9.9.3.4 (including)	0.9.9.3.4 (including)
Webapp	Web-app.org	0.9.9.3.5 (including)	0.9.9.3.5 (including)
Webapp	Web-app.org	0.9.9.4 (including)	0.9.9.4 (including)
Webapp	Web-app.org	0.9.9.5 (including)	0.9.9.5 (including)

References

http://osvdb.org/45396
http://secunia.com/advisories/24227
http://www.attrition.org/pipermail/vim/2007-March/001455.html
http://www.vupen.com/english/advisories/2007/0720
http://www.web-app.org/cgi-bin/index.cgi?action=viewnews\u0026id=252
http://www.web-app.org/cgi-bin/index.cgi?action=viewnews\u0026id=254

NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-1827
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html