Lucene search

K
cve[email protected]CVE-2006-0185
HistoryJan 12, 2006 - 11:00 a.m.

CVE-2006-0185

2006-01-1211:00:00
web.nvd.nist.gov
19
cve
cross-site scripting
php-nuke
security vulnerability

6.1 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.018 Low

EPSS

Percentile

88.2%

Multiple cross-site scripting vulnerabilities in the (1) Pool or (2) News Modules in Php-Nuke allow remote attackers to inject arbitrary web script or HTML via javascript in the SRC attribute of an IMG tag.

Affected configurations

NVD
Node
php-nukenews_module
OR
php-nukepool_module

6.1 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.018 Low

EPSS

Percentile

88.2%

Related for CVE-2006-0185