Lucene search
HistoryJul 06, 2006 - 8:05 p.m.
CVE-2006-3399
cve-2006-3399
cross-site scripting
xss vulnerability
moniwiki
security
nvd
5.9 Medium
AI Score
Confidence
High
2.6 Low
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:N/I:P/A:N
0.006 Low
EPSS
Percentile
78.9%
Cross-site scripting (XSS) vulnerability in wiki.php in MoniWiki before 1.1.2-20060702 allows remote attackers to inject arbitrary Javascript via the URL, which is reflected back in an error message, a variant of CVE-2004-1632.
Affected configurations
Node
moniwikimoniwikiRange≤1.1.1
| CPE | Name | Operator | Version |
|---|---|---|---|
| moniwiki:moniwiki | moniwiki | le | 1.1.1 |
Related
cvelist
cvelist
CVE-2006-3399
2006-07-06 20:00:00
CVE-2004-1632
2005-02-20 05:00:00
nvd
nvd
CVE-2006-3399
2006-07-06 20:05:00
CVE-2004-1632
2004-10-25 04:00:00
nessus
nessus
MoniWiki < 1.0.9 wiki.php XSS
2004-10-25 00:00:00
openvas
openvas
MoniWiki XSS
2005-11-03 00:00:00
cve
cve
CVE-2004-1632
2005-02-20 05:00:00
5.9 Medium
AI Score
Confidence
High
2.6 Low
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:N/I:P/A:N
0.006 Low
EPSS
Percentile
78.9%
Related for CVE-2006-3399