Unrated severityNVD Advisory· Published May 17, 2007· Updated Apr 23, 2026

CVE-2007-2746

Description

The viewList function in lib/WebGUI/Asset/Wobject/DataForm.pm in Plain Black WebGUI before 7.3.14 does not properly use data structures containing privilege information, which allows remote authenticated users to obtain sensitive information or possibly have other unspecified impact.

Affected products

Plain Black/Webgui
cpe:2.3:a:plain_black:webgui:*:*:*:*:*:*:*:*
Range: <=7.3.14

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.plainblack.com/bugs/tracker/dataform-security-bugnvdExploit
osvdb.org/36566nvd
secunia.com/advisories/25355nvd
www.vupen.com/english/advisories/2007/1840nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000