{"id": "CVE-2006-5496", "bulletinFamily": "NVD", "title": "CVE-2006-5496", "description": "Multiple cross-site scripting (XSS) vulnerabilities in Timothy Claason KnowledgeBank 1.01 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters to (1) index.php, (2) addknowledge.php, and (3) addscreenshot.php.", "published": "2006-10-25T10:07:00", "modified": "2018-10-17T21:43:00", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2006-5496", "reporter": "cve@mitre.org", "references": ["http://www.securityfocus.com/bid/20641", "http://www.armorize.com/resources/vulnerability.php?Keyword=Armorize-ADV-2006-0006", "http://securityreason.com/securityalert/1769", "http://securitytracker.com/id?1017097", "https://exchange.xforce.ibmcloud.com/vulnerabilities/29700", "http://www.securityfocus.com/archive/1/449231/100/0/threaded"], "cvelist": ["CVE-2006-5496"], "type": "cve", "lastseen": "2021-02-02T05:27:25", "edition": 4, "viewCount": 1, "enchantments": {"dependencies": {"references": [{"type": "osvdb", "idList": ["OSVDB:31079", "OSVDB:31078", "OSVDB:31077"]}], "modified": "2021-02-02T05:27:25", "rev": 2}, "score": {"value": 4.6, "vector": "NONE", "modified": "2021-02-02T05:27:25", "rev": 2}, "vulnersScore": 4.6}, "cpe": ["cpe:/a:timothy_claason:knowledgebank:1.01"], "affectedSoftware": [{"cpeName": "timothy_claason:knowledgebank", "name": "timothy claason knowledgebank", "operator": "eq", "version": "1.01"}], "cvss2": {"cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "cpe23": ["cpe:2.3:a:timothy_claason:knowledgebank:1.01:*:*:*:*:*:*:*"], "cwe": ["NVD-CWE-Other"], "scheme": null, "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:a:timothy_claason:knowledgebank:1.01:*:*:*:*:*:*:*", "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "1017097", "refsource": "SECTRACK", "tags": [], "url": "http://securitytracker.com/id?1017097"}, {"name": "http://www.armorize.com/resources/vulnerability.php?Keyword=Armorize-ADV-2006-0006", "refsource": "MISC", "tags": [], "url": "http://www.armorize.com/resources/vulnerability.php?Keyword=Armorize-ADV-2006-0006"}, {"name": "knowledgebank-multiple-xss(29700)", "refsource": "XF", "tags": [], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29700"}, {"name": "1769", "refsource": "SREASON", "tags": [], "url": "http://securityreason.com/securityalert/1769"}, {"name": "20641", "refsource": "BID", "tags": [], "url": "http://www.securityfocus.com/bid/20641"}, {"name": "20061019 Multiple XSS Vulnerabilities in KnowledgeBank 1.01", "refsource": "BUGTRAQ", "tags": [], "url": "http://www.securityfocus.com/archive/1/449231/100/0/threaded"}]}

{"osvdb": [{"lastseen": "2017-04-28T13:20:27", "bulletinFamily": "software", "cvelist": ["CVE-2006-5496"], "description": "# No description provided by the source\n\n## References:\nSecurity Tracker: 1017097\n[Related OSVDB ID: 31079](https://vulners.com/osvdb/OSVDB:31079)\n[Related OSVDB ID: 31078](https://vulners.com/osvdb/OSVDB:31078)\nOther Advisory URL: http://www.armorize.com/resources/vulnerability.php?Keyword=Armorize-ADV-2006-0006\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-10/0330.html\nISS X-Force ID: 29700\n[CVE-2006-5496](https://vulners.com/cve/CVE-2006-5496)\nBugtraq ID: 20641\n", "edition": 1, "modified": "2006-10-19T04:49:22", "published": "2006-10-19T04:49:22", "href": "https://vulners.com/osvdb/OSVDB:31077", "id": "OSVDB:31077", "title": "KnowledgeBank index.php Unspecified XSS", "type": "osvdb", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2017-04-28T13:20:27", "bulletinFamily": "software", "cvelist": ["CVE-2006-5496"], "description": "# No description provided by the source\n\n## References:\nSecurity Tracker: 1017097\n[Related OSVDB ID: 31077](https://vulners.com/osvdb/OSVDB:31077)\n[Related OSVDB ID: 31079](https://vulners.com/osvdb/OSVDB:31079)\nOther Advisory URL: http://www.armorize.com/resources/vulnerability.php?Keyword=Armorize-ADV-2006-0006\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-10/0330.html\nISS X-Force ID: 29700\n[CVE-2006-5496](https://vulners.com/cve/CVE-2006-5496)\nBugtraq ID: 20641\n", "edition": 1, "modified": "2006-10-19T04:49:22", "published": "2006-10-19T04:49:22", "href": "https://vulners.com/osvdb/OSVDB:31078", "id": "OSVDB:31078", "title": "KnowledgeBank addknowledge.php Unspecified XSS", "type": "osvdb", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2017-04-28T13:20:27", "bulletinFamily": "software", "cvelist": ["CVE-2006-5496"], "description": "# No description provided by the source\n\n## References:\nSecurity Tracker: 1017097\n[Related OSVDB ID: 31077](https://vulners.com/osvdb/OSVDB:31077)\n[Related OSVDB ID: 31078](https://vulners.com/osvdb/OSVDB:31078)\nOther Advisory URL: http://www.armorize.com/resources/vulnerability.php?Keyword=Armorize-ADV-2006-0006\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-10/0330.html\nISS X-Force ID: 29700\n[CVE-2006-5496](https://vulners.com/cve/CVE-2006-5496)\nBugtraq ID: 20641\n", "edition": 1, "modified": "2006-10-19T04:49:22", "published": "2006-10-19T04:49:22", "href": "https://vulners.com/osvdb/OSVDB:31079", "id": "OSVDB:31079", "title": "KnowledgeBank addscreenshot.php Unspecified XSS", "type": "osvdb", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}]}