CVE-2006-1899

Sažetak

Multiple cross-site scripting (XSS) vulnerabilities in dev Neuron Blog 1.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) name and (2) website parameters.

Reference

http://secunia.com/advisories/19703
http://securitytracker.com/id?1015960
http://www.securityfocus.com/archive/1/431131/100/0/threaded
http://www.securityfocus.com/bid/17552
http://www.vupen.com/english/advisories/2006/1406
https://exchange.xforce.ibmcloud.com/vulnerabilities/25913

CVSS

Base:	2.6
Impact:	2.9
Exploitability:	4.9

Pristup

Vektor	Složenost	Autentikacija
NETWORK	HIGH	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:N/AC:H/Au:N/C:N/I:P/A:N

Zadnje važnije ažuriranje

18-10-2018 - 16:37

Objavljeno

20-04-2006 - 10:02