Lucene search

[email protected]CVE-2006-1064

HistoryMar 07, 2006 - 9:06 p.m.

CVE-2006-1064

2006-03-0721:06:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

xss

vulnerabilities

lurker 2.0

remote attackers

web script

html

nvd

5.6 Medium

AI Score

Confidence

High

2.6 Low

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:N/I:P/A:N

0.005 Low

EPSS

Percentile

75.9%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in Lurker 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via unknown attack vectors.

CPENameOperatorVersion
lurker:lurkerlurkereq2.0
lurker:lurkerlurkereq0.1a

CPE	Name	Operator	Version
lurker:lurker	lurker	eq	2.0
lurker:lurker	lurker	eq	0.1a

References

secunia.com/advisories/19136

secunia.com/advisories/19145

sourceforge.net/project/shownotes.php?release_id=399034&group_id=8168

terpstra.ca/lurker/message/20060302.130003.4c5c2680.en.html

www.debian.org/security/2006/dsa-999

www.osvdb.org/23696

www.securityfocus.com/bid/17003

www.vupen.com/english/advisories/2006/0850

exchange.xforce.ibmcloud.com/vulnerabilities/25154

5.6 Medium

AI Score

Confidence

High

2.6 Low

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:N/I:P/A:N

0.005 Low

EPSS

Percentile

75.9%

JSON

Related for CVE-2006-1064

ubuntucve1 debiancve1 prion1 cvelist1 debian2 openvas2 osv1 nessus1