Lucene search

[email protected]CVE-2006-0086

HistoryJan 05, 2006 - 11:03 a.m.

CVE-2006-0086

2006-01-0511:03:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2006-0086

cross-site scripting

nextgen image gallery

security vulnerability

nvd

6.7 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.007 Low

EPSS

Percentile

80.2%

JSON

Cross-site scripting vulnerability in index.php in Next Generation Image Gallery 0.0.1 Lite Edition allows remote attackers to inject arbitrary web script or HTML via the page parameter.

CPENameOperatorVersion
next_generation_image_gallery:next_generation_image_gallerynext generation image galleryeq0.0.1_lite

CPE	Name	Operator	Version
next_generation_image_gallery:next_generation_image_gallery	next generation image gallery	eq	0.0.1_lite

References

osvdb.org/ref/22/22202-nextgen.txt

secunia.com/advisories/18309

www.osvdb.org/22202

www.vupen.com/english/advisories/2006/0037

6.7 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.007 Low

EPSS

Percentile

80.2%

JSON

Related for CVE-2006-0086

prion1