Lucene search

[email protected]CVE-2006-2634

HistoryMay 30, 2006 - 10:02 a.m.

CVE-2006-2634

2006-05-3010:02:00

[email protected]

web.nvd.nist.gov

cve-2006-2634

cross-site scripting

xss

neocrome land down under

ldu

neocrome seditio 102

web security

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.7 Medium

AI Score

Confidence

High

0.013 Low

EPSS

Percentile

86.0%

JSON

Cross-site scripting (XSS) vulnerability in Neocrome Land Down Under (LDU) in Neocrome Seditio 102 allows remote attackers to inject arbitrary web script or HTML via an HTTP Referer field.

Affected configurations

NVD

Node

neocromeseditioMatch102

CPENameOperatorVersion
neocrome:seditioneocrome seditioeq102

CPE	Name	Operator	Version
neocrome:seditio	neocrome seditio	eq	102

References

secunia.com/advisories/20307

securityreason.com/securityalert/967

www.securityfocus.com/archive/1/435145/100/0/threaded

www.securityfocus.com/bid/18130

www.vupen.com/english/advisories/2006/2026

yns.zaxaz.com/advisories/seditio.txt

exchange.xforce.ibmcloud.com/vulnerabilities/26713

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.7 Medium

AI Score

Confidence

High

0.013 Low

EPSS

Percentile

86.0%

JSON

Related for CVE-2006-2634

nvd1 cvelist1 prion1