Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2006-3225
HistoryJun 26, 2006 - 4:05 p.m.

CVE-2006-3225

2006-06-2616:05:00
mitre
web.nvd.nist.gov
20
cve-2006-3225
cross-site scripting
xss
sun one application server
java system application server
remote attack
html injection
web script injection
security vulnerability

CVSS2

2.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:N/I:P/A:N

AI Score

6.1

Confidence

High

EPSS

0.009

Percentile

83.2%

JSON

Cross-site scripting (XSS) vulnerability in Sun ONE Application Server 7 before Update 9, Java System Application Server 7 2004Q2 before Update 5, and Java System Application Server Enterprise Edition 8.1 2005 Q1 allows remote attackers to inject arbitrary HTML or web script via unknown vectors.

Affected configurations

Nvd
Node
sunjava_system_application_serverRange7.0ur4
OR
sunjava_system_application_serverMatch8.1enterprise
OR
sunone_application_serverRange7.0update_8
VendorProductVersionCPE
sunjava_system_application_server*cpe:2.3:a:sun:java_system_application_server:*:ur4:*:*:*:*:*:*
sunjava_system_application_server8.1cpe:2.3:a:sun:java_system_application_server:8.1:*:enterprise:*:*:*:*:*
sunone_application_server*cpe:2.3:a:sun:one_application_server:*:update_8:*:*:*:*:*:*

Related

cvelist 1
nvd 1
cvelist
cvelist
CVE-2006-3225
2006-06-26 16:00:00
nvd
nvd
CVE-2006-3225
2006-06-26 16:05:00

CVSS2

2.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:N/I:P/A:N

AI Score

6.1

Confidence

High

EPSS

0.009

Percentile

83.2%

JSON
Related for CVE-2006-3225
cvelist1nvd1