What is CVE-2007-6388?

CVE-2007-6388 is a vulnerability in N/a. Published 2008-01-08.

Is CVE-2007-6388 known to be exploited?

7 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2007-6388

Cross-site scripting (XSS) vulnerability in mod_status in the Apache HTTP Server 2.2.0 through 2.2.6, 2.0.35 through 2.0.61, and 1.3.2 through 1.3.39, when the server-status page is enabled, allows remote attackers to inject arbitrary web…

EPSS: 0.846 (99.4th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

References

RHSA-2008:0005 (x_refsource_REDHAT, vendor-advisory)
ADV-2008-0554 (vdb-entry, x_refsource_VUPEN)
ADV-2008-0447 (vdb-entry, x_refsource_VUPEN)
28922 (x_refsource_SECUNIA, third-party-advisory)
ADV-2008-0986 (vdb-entry, x_refsource_VUPEN)
3541 (x_refsource_SREASON, third-party-advisory)
28749 (x_refsource_SECUNIA, third-party-advisory)
SSA:2008-045-02 (vendor-advisory, x_refsource_SLACKWARE)
29988 (x_refsource_SECUNIA, third-party-advisory)
SSRT090208 (x_refsource_HP, vendor-advisory)

Frequently asked questions

What is CVE-2007-6388?: CVE-2007-6388 is a vulnerability in N/a. Published 2008-01-08.
Is CVE-2007-6388 known to be exploited?: 7 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.