CVE-2007-3422

CVE-2007-3422 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The getcgi function in cgi-bin/cgi-lib/subs.pl in web-app.org WebAPP before 0.9.9.7 attempts to parse query strings that contain (1) non-printing characters, (2) certain printing characters that do not commonly occur in URLs, or (3) invalid URL encoding sequences, which has unknown impact and remote attack vectors.

Learn more about our Web App Pen Testing.