Lucene search

MitreCVE-2006-6687

HistoryDec 21, 2006 - 9:28 p.m.

CVE-2006-6687

2006-12-2121:28:00

CWE-79

mitre

web.nvd.nist.gov

cve

2006

6687

cross-site scripting

xss

vulnerability

web automated perl portal

webapp

0.9.9.4

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.8

Confidence

High

EPSS

0.001

Percentile

48.8%

JSON

Cross-site scripting (XSS) vulnerability in Web Automated Perl Portal (WebAPP) 0.9.9.4, and 0.9.9.3.4 Network Edition (NE) (aka WebAPP.NET), allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.

Affected configurations

Nvd

Node

web-app.netwebappMatch0.9.9.3.4-network

web-app.netwebappMatch0.9.9.4

VendorProductVersionCPE
web-app.netwebapp0.9.9.3.4cpe:2.3:a:web-app.net:webapp:0.9.9.3.4:-:network:*:*:*:*:*
web-app.netwebapp0.9.9.4cpe:2.3:a:web-app.net:webapp:0.9.9.4:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
web-app.net	webapp	0.9.9.3.4	cpe:2.3:a:web-app.net:webapp:0.9.9.3.4:-:network:::::*
web-app.net	webapp	0.9.9.4	cpe:2.3:a:web-app.net:webapp:0.9.9.4:::::::*

References

www.securityfocus.com/bid/21684

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.8

Confidence

High

EPSS

0.001

Percentile

48.8%

JSON

Related for CVE-2006-6687