{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-27T20:04:20.302","vulnerabilities":[{"cve":{"id":"CVE-2007-5944","sourceIdentifier":"cve@mitre.org","published":"2007-11-14T01:46:00.000","lastModified":"2026-06-16T22:47:05.423","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-site scripting (XSS) vulnerability in Servlet Engine / Web Container in IBM WebSphere Application Server (WAS) 5.1.1.4 through 5.1.1.16 allows remote attackers to inject arbitrary web script or HTML via the Expect HTTP header.  NOTE: this might be the same issue as CVE-2006-3918, but there are insufficient details to be sure."},{"lang":"es","value":"Una vulnerabilidad de tipo cross-site scripting (XSS) en Servlet Engine / Web Container en IBM WebSphere Application Server (WAS) versiones 5.1.1.4 hasta 5.1.1.1.16,  permite a atacantes remotos inyectar script web o HTML arbitrario por medio del encabezado HTTP Expect. NOTA: este podría ser el mismo problema que el CVE-2006-3918, pero no hay detalles suficientes para estar seguros."}],"affected":[{"source":"cve@mitre.org","affectedData":[{"vendor":"n/a","product":"n/a","versions":[{"version":"n/a","status":"affected"}]}]}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:5.1.1.4:*:*:*:*:*:*:*","matchCriteriaId":"DBE79CF3-16A3-40FB-BD7D-5D70DEB0EE09"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:5.1.1.5:*:*:*:*:*:*:*","matchCriteriaId":"FC04CE9C-82B4-4406-823A-69A5E13ECA49"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:5.1.1.6:*:*:*:*:*:*:*","matchCriteriaId":"1F6A5B3A-E57D-4574-A481-7EDA93664076"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:5.1.1.7:*:*:*:*:*:*:*","matchCriteriaId":"425890C2-FC96-4191-B512-6A3DB7BCE2D2"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:5.1.1.8:*:*:*:*:*:*:*","matchCriteriaId":"7BABB4A4-182D-4FB1-88AD-B6D6EDAE10C8"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:5.1.1.9:*:*:*:*:*:*:*","matchCriteriaId":"0CF8ED4D-D2B6-49EC-930A-16A78E729F17"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:5.1.1.10:*:*:*:*:*:*:*","matchCriteriaId":"8D8219D5-94D7-4E1B-BFA9-EF786FFD2C3C"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:5.1.1.11:*:*:*:*:*:*:*","matchCriteriaId":"EA0C57F6-D011-47C1-B9DC-B1C3083FD28C"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:5.1.1.12:*:*:*:*:*:*:*","matchCriteriaId":"7F8AFDEA-237C-40CA-AFC1-ED8D212FF867"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:5.1.1.13:*:*:*:*:*:*:*","matchCriteriaId":"3067F0B0-2DCD-49EB-9727-7C3C7C99A11A"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:5.1.1.14:*:*:*:*:*:*:*","matchCriteriaId":"2F215B48-7ED5-45EB-BD26-3D3EAD01506F"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:5.1.1.15:*:*:*:*:*:*:*","matchCriteriaId":"C47D1C56-238B-414B-B2D2-D7069E42D001"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:websphere_application_server:5.1.1.16:*:*:*:*:*:*:*","matchCriteriaId":"625B5901-B0AF-4D00-BC56-525A6F72943D"}]}]}],"references":[{"url":"http://osvdb.org/38700","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/27674","source":"cve@mitre.org"},{"url":"http://www-1.ibm.com/support/docview.wss?uid=swg1PK51068","source":"cve@mitre.org"},{"url":"http://www-1.ibm.com/support/docview.wss?uid=swg24017314","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/26457","source":"cve@mitre.org"},{"url":"http://www.securitytracker.com/id?1018963","source":"cve@mitre.org"},{"url":"http://www.vupen.com/english/advisories/2007/3680","source":"cve@mitre.org"},{"url":"http://osvdb.org/38700","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/27674","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www-1.ibm.com/support/docview.wss?uid=swg1PK51068","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www-1.ibm.com/support/docview.wss?uid=swg24017314","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/26457","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securitytracker.com/id?1018963","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2007/3680","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}