Lucene search
MitreCVE-2006-4199HistoryAug 17, 2006 - 9:04 p.m.
CVE-2006-4199
2006-08-1721:04:00
mitre
web.nvd.nist.gov
23
cve
2006
4199
cross-site scripting
xss
vulnerability
soft3304
04webserver
nvd
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
5.6
Confidence
High
EPSS
0.007
Percentile
80.6%
Cross-site scripting (XSS) vulnerability in Soft3304 04WebServer 1.83 and earlier allows remote attackers to inject arbitrary web script or HTML via the URL, which is not properly sanitized before it is returned in an error page, a different vulnerability than CVE-2004-1512.
Affected configurations
Node
soft330404webserverRange≤1.83
ORsoft330404webserverMatch1.5
ORsoft330404webserverMatch1.42
ORsoft330404webserverMatch1.81
| Vendor | Product | Version | CPE |
|---|---|---|---|
| soft3304 | 04webserver | * | cpe:2.3:a:soft3304:04webserver:*:*:*:*:*:*:*:* |
| soft3304 | 04webserver | 1.5 | cpe:2.3:a:soft3304:04webserver:1.5:*:*:*:*:*:*:* |
| soft3304 | 04webserver | 1.42 | cpe:2.3:a:soft3304:04webserver:1.42:*:*:*:*:*:*:* |
| soft3304 | 04webserver | 1.81 | cpe:2.3:a:soft3304:04webserver:1.81:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2006-4199
2006-08-17 21:04:00
CVE-2004-1512
2004-12-31 05:00:00
cvelist
cvelist
CVE-2006-4199
2006-08-17 21:00:00
CVE-2004-1512
2005-02-19 05:00:00
cve
cve
CVE-2004-1512
2005-02-19 05:00:00
nessus
nessus
04WebServer Multiple Vulnerabilities (XSS, DoS, more)
2004-11-13 00:00:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
5.6
Confidence
High
EPSS
0.007
Percentile
80.6%
Related for CVE-2006-4199