CVE-2006-1810 - CERT CVE

  1. CVE-2006-1810

ID CVE-2006-1810
Sažetak Multiple cross-site scripting (XSS) vulnerabilities in FlexBB 0.5.5 BETA allow remote attackers to inject arbitrary web script or HTML via the (1) ICQ, (2) AIM, (3) MSN, (4) Google Talk, (5) Website Name, (6) Website Address, (7) Email Address, (8) Location, (9) Signature, and (10) Sub-Titles fields in the user profile.
Reference
CVSS
Base: 1.9
Impact: 2.9
Exploitability:3.4
Pristup
VektorSloženostAutentikacija
LOCAL MEDIUM NONE
Impact
PovjerljivostCjelovitostDostupnost
NONE PARTIAL NONE
CVSS vektor AV:L/AC:M/Au:N/C:N/I:P/A:N
Zadnje važnije ažuriranje 18-10-2018 - 16:36
Objavljeno 18-04-2006 - 10:02