Cross-Site Scripting Vulnerability in djeyl.net WebMod for Half-Life Dedicated Server
CVE-2007-5477

Currently unrated

Key Information:

Vendor

Valve Software

Status
Half-life Dedicated Server
Webmod Plugin
Vendor
CVE Published:
16 October 2007

What is CVE-2007-5477?

The WebMod plugin version 0.48 for Half-Life Dedicated Server contains a cross-site scripting vulnerability in the auth.w script. This flaw enables remote attackers to inject arbitrary web scripts or HTML into web pages via the redir parameter. If exploited, this vulnerability can lead to unauthorized access and manipulation of user sessions, allowing attackers to potentially execute malicious actions or steal sensitive information.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://osvdb.org/37833
vdb-entryx_refsource_OSVDB
http://sla.ckers.org/forum/read.php?3%2C44%2C11482#msg-11482
x_refsource_MISC
https://exchange.xforce.ibmcloud.com/vulnerabilities/37220
vdb-entryx_refsource_XF

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.