Lucene search
HistoryApr 02, 2006 - 9:04 p.m.
CVE-2006-1577
cve-2006-1577
cross-site scripting
xss
mantis
nvd
vulnerability
5.8 Medium
AI Score
Confidence
High
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.025 Low
EPSS
Percentile
90.2%
Multiple cross-site scripting (XSS) vulnerabilities in view_all_set.php in Mantis 1.0.1, 1.0.0rc5, and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) start_day, (2) start_year, and (3) start_month parameters.
Related
cvelist
cvelist
CVE-2006-1577
2006-04-02 21:00:00
prion
prion
Cross site scripting
2006-04-02 21:04:00
ubuntucve
ubuntucve
CVE-2006-1577
2006-04-02 00:00:00
osv
osv
mantis - cross site scripting
2006-08-01 00:00:00
nessus
nessus
Debian DSA-1133-1 : mantis - missing input sanitising
2006-10-14 00:00:00
debian
debian
openvas
openvas
Debian: Security Advisory (DSA-1133-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 1133-1 (mantis)
2008-01-17 00:00:00
5.8 Medium
AI Score
Confidence
High
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.025 Low
EPSS
Percentile
90.2%
Related for CVE-2006-1577