Lucene search

[email protected]CVE-2006-2510

HistoryMay 22, 2006 - 7:02 p.m.

CVE-2006-2510

2006-05-2219:02:00

[email protected]

web.nvd.nist.gov

security

xss

vulnerability

web script

html

yourfreeworld

short url

url tracker script

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

5.8 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.9%

JSON

Cross-site scripting (XSS) vulnerability in the URL submission form in YourFreeWorld.com Short Url & Url Tracker Script allows remote attackers to inject arbitrary web script or HTML via an unspecified form for submitting URLs.

Affected configurations

NVD

Node

yourfreeworldshort_url_and_url_tracker_script

CPENameOperatorVersion
yourfreeworld:short_url_and_url_tracker_scriptyourfreeworld short url and url tracker scripteq*

CPE	Name	Operator	Version
yourfreeworld:short_url_and_url_tracker_script	yourfreeworld short url and url tracker script	eq	*

References

www.securityfocus.com/archive/1/434530/100/0/threaded

www.securityfocus.com/bid/18046

exchange.xforce.ibmcloud.com/vulnerabilities/26574

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

5.8 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.9%

JSON

Related for CVE-2006-2510

nvd1 cvelist1 prion1