Lucene search

MitreCVE-2006-2634

HistoryMay 30, 2006 - 10:02 a.m.

CVE-2006-2634

2006-05-3010:02:00

mitre

web.nvd.nist.gov

cve-2006-2634

cross-site scripting

xss

neocrome land down under

ldu

neocrome seditio 102

web security

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.013

Percentile

86.0%

JSON

Cross-site scripting (XSS) vulnerability in Neocrome Land Down Under (LDU) in Neocrome Seditio 102 allows remote attackers to inject arbitrary web script or HTML via an HTTP Referer field.

Affected configurations

Nvd

Node

neocromeseditioMatch102

VendorProductVersionCPE
neocromeseditio102cpe:2.3:a:neocrome:seditio:102:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
neocrome	seditio	102	cpe:2.3:a:neocrome:seditio:102:::::::*

References

secunia.com/advisories/20307

securityreason.com/securityalert/967

www.securityfocus.com/archive/1/435145/100/0/threaded

www.securityfocus.com/bid/18130

www.vupen.com/english/advisories/2006/2026

yns.zaxaz.com/advisories/seditio.txt

exchange.xforce.ibmcloud.com/vulnerabilities/26713

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.013

Percentile

86.0%

JSON

Related for CVE-2006-2634