Lucene search
MitreCVE-2006-2804HistoryJun 03, 2006 - 10:02 a.m.
CVE-2006-2804
2006-06-0310:02:00
mitre
web.nvd.nist.gov
30
cve-2006-2804
cross-site scripting
xss
goss intelligent content management
icm 7.0
security vulnerability
remote attack
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
5.6
Confidence
High
EPSS
0.005
Percentile
77.1%
Cross-site scripting (XSS) vulnerability in index.cfm in Goss Intelligent Content Management (iCM) 7.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the keyword parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party sources.
Affected configurations
Node
gossicmRange≤7.0
Related
cvelist
cvelist
CVE-2006-2804
2006-06-03 10:00:00
nvd
nvd
CVE-2006-2804
2006-06-03 10:02:00
prion
prion
Cross site scripting
2006-06-03 10:02:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
5.6
Confidence
High
EPSS
0.005
Percentile
77.1%
Related for CVE-2006-2804