Lucene search

[email protected]CVE-2006-2773

HistoryJun 02, 2006 - 10:18 a.m.

CVE-2006-2773

2006-06-0210:18:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2006-2773

information security

guestbook

credential verification

remote attack

7.3 High

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

0.013 Low

EPSS

Percentile

85.8%

JSON

admin/redigera/redigera2.asp in Hogstorps hogstorp Guestbook 2.0 does not verify user credentials, which allows remote attackers to edit arbitrary posts via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

CPENameOperatorVersion
hogstorps:hogstorp_guestbookhogstorps hogstorp guestbookeq2.0

CPE	Name	Operator	Version
hogstorps:hogstorp_guestbook	hogstorps hogstorp guestbook	eq	2.0

References

secunia.com/advisories/20402

www.vupen.com/english/advisories/2006/2082

exchange.xforce.ibmcloud.com/vulnerabilities/26979

7.3 High

AI Score

Confidence

Low

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

0.013 Low

EPSS

Percentile

85.8%

JSON

Related for CVE-2006-2773

prion1