[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2007-6306":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":44,"aliases":58,"duplicate_of":9,"upstream":59,"downstream":60,"duplicates":75,"related":76,"reserved_at":9,"published_at":77,"modified_at":78,"state":79,"summary":80,"references_raw":88,"kevs":175,"epss":176,"epss_history":179,"metrics":436,"affected":441},"CVE-2007-6306","Multiple cross-site scripting (XSS) vulnerabilities in the image map feature in JFreeChart 1.0.8 allow remote attackers to inject arbitrary web script or HTML via the (1) chart name or (2) chart tool tip text; or the (3) href, (4) shape, or (5) coords attribute of a chart area.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-79","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.","weakness","Stable","Base","High",[20,24,28,32,36,40],{"id":21,"name":22,"techniques":23},"CAPEC-209","XSS Using MIME Type Mismatch",[],{"id":25,"name":26,"techniques":27},"CAPEC-588","DOM-Based XSS",[],{"id":29,"name":30,"techniques":31},"CAPEC-591","Reflected XSS",[],{"id":33,"name":34,"techniques":35},"CAPEC-592","Stored XSS",[],{"id":37,"name":38,"techniques":39},"CAPEC-63","Cross-Site Scripting (XSS)",[],{"id":41,"name":42,"techniques":43},"CAPEC-85","AJAX Footprinting",[],[45,54],{"_key":46,"name":47,"source":48,"url":49,"maturity":50,"reliability_score":51,"verified":52,"type":9,"platforms":53,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_E95CEBCE5DF99AA7","Exploit Reference (jfreechart.svn.sourceforge.net)","reference","http://jfreechart.svn.sourceforge.net/viewvc/jfreechart/trunk/source/org/jfree/chart/entity/ChartEntity.java?r1=662&r2=661&pathrev=662","unknown",0.2,false,[],{"_key":55,"name":47,"source":48,"url":56,"maturity":50,"reliability_score":51,"verified":52,"type":9,"platforms":57,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_945B473D127ABC92","http://jfreechart.svn.sourceforge.net/viewvc/jfreechart/trunk/source/org/jfree/chart/imagemap/ImageMapUtilities.java?r1=662&r2=661&pathrev=662",[],[],[],[61,63,65,67,69,71,73],{"_key":62},"RHSA-2008:0151",{"_key":64},"RHSA-2008:0158",{"_key":66},"RHSA-2008:0213",{"_key":68},"RHSA-2008:0261",{"_key":70},"RHSA-2008:0524",{"_key":72},"RHSA-2008:0630",{"_key":74},"DEBIAN-CVE-2007-6306",[],[],"2007-12-11T21:00:00.000Z","2024-08-07T16:02:36.495Z","Modified",{"cisa_kev":52,"cisa_ransomware":52,"cisa_vendor":9,"epss_severity":81,"epss_score":82,"severity":83,"severity_score":84,"severity_version":85,"severity_source":86,"severity_vector":87,"severity_status":79},"low",0.02289,"medium",4.3,"v2.0","nvd","AV:N/AC:M/Au:N/C:N/I:P/A:N",[89,96,100,105,111,115,119,125,129,135,141,144,149,153,158,162,166,170],{"url":90,"sources":91,"tags":93},"http://rhn.redhat.com/errata/RHSA-2008-0630.html",[92,86],"cve.org",[94,95],"Vendor Advisory","X Refsource REDHAT",{"url":97,"sources":98,"tags":99},"http://www.redhat.com/support/errata/RHSA-2008-0213.html",[92,86],[94,95],{"url":101,"sources":102,"tags":103},"http://www.rapid7.com/advisories/R7-0031.jsp",[92,86],[104],"X Refsource MISC",{"url":106,"sources":107,"tags":108},"http://secunia.com/advisories/31493",[92,86],[109,110],"Third Party Advisory","X Refsource SECUNIA",{"url":112,"sources":113,"tags":114},"http://secunia.com/advisories/27959",[92,86],[109,110,94],{"url":116,"sources":117,"tags":118},"http://www.redhat.com/support/errata/RHSA-2008-0151.html",[92,86],[94,95],{"url":120,"sources":121,"tags":122},"http://jfreechart.svn.sourceforge.net/viewvc/jfreechart/branches/jfreechart-1.0.8-security/NEWS?r1=679&r2=680",[92,86],[123,124],"X Refsource CONFIRM","Patch",{"url":49,"sources":126,"tags":127},[92,86],[104,128],"Exploit",{"url":130,"sources":131,"tags":132},"http://www.securityfocus.com/bid/26752",[92,86],[133,134],"VDB Entry","X Refsource BID",{"url":136,"sources":137,"tags":138},"http://www.securityfocus.com/archive/1/484709/100/0/threaded",[92,86],[139,140],"Mailing List","X Refsource BUGTRAQ",{"url":56,"sources":142,"tags":143},[92,86],[104,128],{"url":145,"sources":146,"tags":147},"http://osvdb.org/41843",[92,86],[133,148],"X Refsource OSVDB",{"url":150,"sources":151,"tags":152},"http://osvdb.org/41844",[92,86],[133,148],{"url":154,"sources":155,"tags":156},"http://securityreason.com/securityalert/3430",[92,86],[109,157],"X Refsource SREASON",{"url":159,"sources":160,"tags":161},"http://osvdb.org/41845",[92,86],[133,148],{"url":163,"sources":164,"tags":165},"http://www.redhat.com/support/errata/RHSA-2008-0158.html",[92,86],[94,95],{"url":167,"sources":168,"tags":169},"http://www.redhat.com/support/errata/RHSA-2008-0261.html",[92,86],[94,95],{"url":171,"sources":172,"tags":173},"https://exchange.xforce.ibmcloud.com/vulnerabilities/38922",[92,86],[133,174],"X Refsource XF",[],{"date":177,"score":82,"percentile":178},"2026-06-04",0.85003,[180,184,187,190,193,196,199,202,205,208,211,214,217,219,221,224,227,230,233,236,239,242,244,247,249,252,254,256,259,262,265,268,270,273,275,277,280,283,286,289,291,294,297,300,303,306,309,312,315,318,321,324,327,329,332,335,338,341,344,347,350,353,356,360,363,366,369,371,374,377,379,382,385,388,391,394,396,399,402,405,408,411,414,417,419,422,425,427,430,433],{"date":181,"score":182,"percentile":183},"2025-11-04",0.01781,0.82094,{"date":185,"score":182,"percentile":186},"2025-11-05",0.82095,{"date":188,"score":182,"percentile":189},"2025-11-06",0.82099,{"date":191,"score":182,"percentile":192},"2025-11-07",0.82109,{"date":194,"score":182,"percentile":195},"2025-11-08",0.82117,{"date":197,"score":182,"percentile":198},"2025-11-09",0.82112,{"date":200,"score":182,"percentile":201},"2025-11-10",0.82105,{"date":203,"score":182,"percentile":204},"2025-11-11",0.82113,{"date":206,"score":182,"percentile":207},"2025-11-12",0.82124,{"date":209,"score":182,"percentile":210},"2025-11-13",0.82128,{"date":212,"score":182,"percentile":213},"2025-11-14",0.82132,{"date":215,"score":182,"percentile":216},"2025-11-15",0.82126,{"date":218,"score":182,"percentile":210},"2025-11-16",{"date":220,"score":182,"percentile":216},"2025-11-17",{"date":222,"score":182,"percentile":223},"2025-11-18",0.81219,{"date":225,"score":182,"percentile":226},"2025-11-19",0.8122,{"date":228,"score":182,"percentile":229},"2025-11-20",0.81224,{"date":231,"score":182,"percentile":232},"2025-11-21",0.82138,{"date":234,"score":182,"percentile":235},"2025-11-22",0.8214,{"date":237,"score":182,"percentile":238},"2025-11-23",0.82134,{"date":240,"score":182,"percentile":241},"2025-11-24",0.82133,{"date":243,"score":182,"percentile":210},"2025-11-25",{"date":245,"score":182,"percentile":246},"2025-11-26",0.82129,{"date":248,"score":182,"percentile":238},"2025-11-27",{"date":250,"score":182,"percentile":251},"2025-11-28",0.82122,{"date":253,"score":182,"percentile":246},"2025-11-29",{"date":255,"score":182,"percentile":238},"2025-11-30",{"date":257,"score":182,"percentile":258},"2025-12-01",0.82206,{"date":260,"score":182,"percentile":261},"2025-12-02",0.82208,{"date":263,"score":182,"percentile":264},"2025-12-03",0.82207,{"date":266,"score":182,"percentile":267},"2025-12-04",0.82131,{"date":269,"score":182,"percentile":232},"2025-12-05",{"date":271,"score":182,"percentile":272},"2025-12-06",0.82136,{"date":274,"score":182,"percentile":238},"2025-12-07",{"date":276,"score":182,"percentile":232},"2025-12-08",{"date":278,"score":182,"percentile":279},"2025-12-09",0.82157,{"date":281,"score":182,"percentile":282},"2025-12-10",0.82182,{"date":284,"score":182,"percentile":285},"2025-12-11",0.82199,{"date":287,"score":182,"percentile":288},"2025-12-12",0.82209,{"date":290,"score":182,"percentile":288},"2025-12-13",{"date":292,"score":182,"percentile":293},"2025-12-14",0.82205,{"date":295,"score":182,"percentile":296},"2025-12-15",0.82202,{"date":298,"score":182,"percentile":299},"2025-12-16",0.82213,{"date":301,"score":182,"percentile":302},"2025-12-17",0.82219,{"date":304,"score":182,"percentile":305},"2025-12-18",0.8223,{"date":307,"score":182,"percentile":308},"2025-12-19",0.82234,{"date":310,"score":182,"percentile":311},"2025-12-20",0.82228,{"date":313,"score":182,"percentile":314},"2025-12-21",0.82226,{"date":316,"score":182,"percentile":317},"2025-12-22",0.82229,{"date":319,"score":182,"percentile":320},"2025-12-23",0.82232,{"date":322,"score":182,"percentile":323},"2025-12-24",0.82241,{"date":325,"score":182,"percentile":326},"2025-12-25",0.82257,{"date":328,"score":182,"percentile":326},"2025-12-26",{"date":330,"score":182,"percentile":331},"2025-12-27",0.82286,{"date":333,"score":182,"percentile":334},"2025-12-28",0.82243,{"date":336,"score":182,"percentile":337},"2025-12-29",0.82238,{"date":339,"score":182,"percentile":340},"2025-12-30",0.82246,{"date":342,"score":182,"percentile":343},"2025-12-31",0.82258,{"date":345,"score":182,"percentile":346},"2026-01-01",0.82326,{"date":348,"score":182,"percentile":349},"2026-01-02",0.82322,{"date":351,"score":182,"percentile":352},"2026-01-03",0.82316,{"date":354,"score":182,"percentile":355},"2026-01-04",0.82235,{"date":357,"score":358,"percentile":359},"2026-01-05",0.02027,0.83305,{"date":361,"score":358,"percentile":362},"2026-01-06",0.8331,{"date":364,"score":358,"percentile":365},"2026-01-07",0.83311,{"date":367,"score":358,"percentile":368},"2026-01-08",0.83319,{"date":370,"score":358,"percentile":368},"2026-01-09",{"date":372,"score":358,"percentile":373},"2026-01-10",0.83318,{"date":375,"score":358,"percentile":376},"2026-01-11",0.83315,{"date":378,"score":358,"percentile":365},"2026-01-12",{"date":380,"score":358,"percentile":381},"2026-01-13",0.83306,{"date":383,"score":358,"percentile":384},"2026-01-14",0.83327,{"date":386,"score":358,"percentile":387},"2026-01-15",0.83326,{"date":389,"score":358,"percentile":390},"2026-01-16",0.83335,{"date":392,"score":358,"percentile":393},"2026-01-17",0.83338,{"date":395,"score":358,"percentile":390},"2026-01-18",{"date":397,"score":358,"percentile":398},"2026-01-19",0.83331,{"date":400,"score":358,"percentile":401},"2026-01-20",0.83337,{"date":403,"score":358,"percentile":404},"2026-01-21",0.83343,{"date":406,"score":358,"percentile":407},"2026-01-22",0.83348,{"date":409,"score":358,"percentile":410},"2026-01-23",0.83369,{"date":412,"score":358,"percentile":413},"2026-01-24",0.83377,{"date":415,"score":358,"percentile":416},"2026-01-25",0.8337,{"date":418,"score":358,"percentile":410},"2026-01-26",{"date":420,"score":358,"percentile":421},"2026-01-27",0.83372,{"date":423,"score":358,"percentile":424},"2026-01-28",0.83375,{"date":426,"score":358,"percentile":413},"2026-01-29",{"date":428,"score":358,"percentile":429},"2026-01-30",0.83381,{"date":431,"score":358,"percentile":432},"2026-01-31",0.83389,{"date":434,"score":358,"percentile":435},"2026-02-01",0.8346,[437],{"source":86,"cvss_v2_0":438,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":84,"baseSeverity":9,"vectorString":87,"impactScore":439,"exploitabilityScore":440},2.9,8.6,[442],{"ecosystem":9,"name":443,"vendor":444,"product":443,"cpe_part":445,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":446},"jfreechart","jfree","o",[447],{"version":448,"is_range":52,"range_type":449,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"1.0.8","cpe"]