Lucene search

MitreCVE-2006-0605

HistoryFeb 08, 2006 - 11:02 p.m.

CVE-2006-0605

2006-02-0823:02:00

mitre

web.nvd.nist.gov

cve-2006-0605

cross-site scripting

xss

unknown domain shoutbox

remote attackers

web script

html

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

Confidence

High

EPSS

0.008

Percentile

82.1%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in Unknown Domain Shoutbox 2005.07.21 allow remote attackers to inject arbitrary web script or HTML, possibly via the (1) Handle or (2) Message fields.

Affected configurations

Nvd

Node

unknown_domainshoutboxMatch2005-07-21

VendorProductVersionCPE
unknown_domainshoutbox2005-07-21cpe:2.3:a:unknown_domain:shoutbox:2005-07-21:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
unknown_domain	shoutbox	2005-07-21	cpe:2.3:a:unknown_domain:shoutbox:2005-07-21:::::::*

References

evuln.com/vulns/55/summary.html

secunia.com/advisories/18759

www.securityfocus.com/archive/1/424679/100/0/threaded

www.securityfocus.com/bid/16543

www.vupen.com/english/advisories/2006/0476

exchange.xforce.ibmcloud.com/vulnerabilities/24440

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

Confidence

High

EPSS

0.008

Percentile

82.1%

JSON

Related for CVE-2006-0605