Lucene search

[email protected]CVE-2006-1583

HistoryApr 02, 2006 - 9:04 p.m.

CVE-2006-1583

2006-04-0221:04:00

[email protected]

web.nvd.nist.gov

cve

2006

1583

xss

vulnerability

warcraft iii

replay parser

php

web script

html

5.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

5.8 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

68.3%

JSON

Cross-site scripting (XSS) vulnerability in index.php in Warcraft III Replay Parser for PHP 1.8c allows remote attackers to inject arbitrary web script or HTML via the page parameter. NOTE: post-disclosure analysis by CVE suggests that the “page” parameter is not used in this product, and “id” might be the affected parameter.

Affected configurations

NVD

Node

juliusz_julas_gonerawarcraft_iii_replay_parser_phpMatch1.8c

CPENameOperatorVersion
juliusz_julas_gonera:warcraft_iii_replay_parser_phpjuliusz julas gonera warcraft iii replay parser phpeq1.8c

CPE	Name	Operator	Version
juliusz_julas_gonera:warcraft_iii_replay_parser_php	juliusz julas gonera warcraft iii replay parser php	eq	1.8c

References

www.securityfocus.com/archive/1/429535/100/0/threaded

www.securityfocus.com/bid/17334

exchange.xforce.ibmcloud.com/vulnerabilities/25685

5.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

5.8 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

68.3%

JSON

Related for CVE-2006-1583

cvelist1 nvd1 prion1