CVE-2006-5496

2006-10-2510:00:00

mitre

www.cve.org

AI Score

5.9

Confidence

High

EPSS

0.006

Percentile

78.3%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in Timothy Claason KnowledgeBank 1.01 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters to (1) index.php, (2) addknowledge.php, and (3) addscreenshot.php.

References

securityreason.com/securityalert/1769

securitytracker.com/id?1017097

www.armorize.com/resources/vulnerability.php?Keyword=Armorize-ADV-2006-0006

www.securityfocus.com/archive/1/449231/100/0/threaded

www.securityfocus.com/bid/20641

exchange.xforce.ibmcloud.com/vulnerabilities/29700