Lucene search

MitreCVE-2006-1923

HistoryApr 20, 2006 - 6:06 p.m.

CVE-2006-1923

2006-04-2018:06:00

mitre

web.nvd.nist.gov

linpha

xss

cross-site scripting

vulnerabilities

remote attackers

web script

html

nvd

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

AI Score

5.9

Confidence

High

EPSS

0.006

Percentile

78.3%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in LinPHA before 1.1.1 allow remote attackers to inject arbitrary web script or HTML via (1) RSS/RSS.php and (2) possibly other vectors.

Affected configurations

Nvd

Node

linphalinphaMatch1.0

linphalinphaMatch1.1.0

VendorProductVersionCPE
linphalinpha1.0cpe:2.3:a:linpha:linpha:1.0:*:*:*:*:*:*:*
linphalinpha1.1.0cpe:2.3:a:linpha:linpha:1.1.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
linpha	linpha	1.0	cpe:2.3:a:linpha:linpha:1.0:::::::*
linpha	linpha	1.1.0	cpe:2.3:a:linpha:linpha:1.1.0:::::::*

References

attrition.org/pipermail/vim/2006-April/000709.html

secunia.com/advisories/19719

www.osvdb.org/24816

www.securityfocus.com/bid/17619

www.vupen.com/english/advisories/2006/1424

exchange.xforce.ibmcloud.com/vulnerabilities/26269

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

AI Score

5.9

Confidence

High

EPSS

0.006

Percentile

78.3%

JSON

Related for CVE-2006-1923