CVE-2007-0184

High

7.5/10

Summary

Getahead Direct Web Remoting (DWR) before 1.1.4 allows attackers to obtain unauthorized access to public methods via a crafted request that bypasses the include/exclude checks.

Access Complexity: LOW
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: PARTIAL
Confidentiality Impact: PARTIAL
Availability Impact: PARTIAL

References

Advisory Timeline

Published Jan 12, 2007

CVE-2007-0184

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS