What is the severity of CVE-2007-5119?

CVE-2007-5119 has a low severity rating as it allows access to sensitive information rather than executing arbitrary code.

How do I fix CVE-2007-5119?

To fix CVE-2007-5119, upgrade to JSPWiki version 2.4.104 or later, or to 2.5.140-beta to mitigate the vulnerability.

What types of information can be exposed by CVE-2007-5119?

CVE-2007-5119 can expose the full file path of the application server and potentially sensitive information shortcuts.

Which versions of JSPWiki are affected by CVE-2007-5119?

CVE-2007-5119 affects JSPWiki versions 2.4.103 and 2.5.139-beta.

Is CVE-2007-5119 a common vulnerability in web applications?

CVE-2007-5119 represents a common vulnerability known as information disclosure, which is often exploited to gather further attack vectors.

Vulnerability/
CVE-2007-5119

medium

4.3

CWE

27/9/2007

15/10/2018

CVE-2007-5119: Input Validation

First published: Thu Sep 27 2007(Updated: )

JSPWiki 2.4.103 and 2.5.139-beta allows remote attackers to obtain sensitive information (full path) via an invalid integer in the version parameter to the default URI under attach/Main/.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Apache JSPWiki	=2.4.103
Apache JSPWiki	=2.5.139-beta

Remedy

http://secunia.com/advisories/26961

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2007-5119?
CVE-2007-5119 has a low severity rating as it allows access to sensitive information rather than executing arbitrary code.
How do I fix CVE-2007-5119?
To fix CVE-2007-5119, upgrade to JSPWiki version 2.4.104 or later, or to 2.5.140-beta to mitigate the vulnerability.
What types of information can be exposed by CVE-2007-5119?
CVE-2007-5119 can expose the full file path of the application server and potentially sensitive information shortcuts.
Which versions of JSPWiki are affected by CVE-2007-5119?
CVE-2007-5119 affects JSPWiki versions 2.4.103 and 2.5.139-beta.
Is CVE-2007-5119 a common vulnerability in web applications?
CVE-2007-5119 represents a common vulnerability known as information disclosure, which is often exploited to gather further attack vectors.

agent/weakness
agent/references
agent/severity
agent/author
agent/type
agent/description
agent/event
agent/first-publish-date
agent/last-modified-date
agent/remedy
agent/softwarecombine
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/jspwiki
canonical/apache jspwiki
version/apache jspwiki/2.4.103
version/apache jspwiki/2.5.139-beta

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.