Lucene search

K
cve[email protected]CVE-2006-5975
HistoryNov 20, 2006 - 9:07 p.m.

CVE-2006-5975

2006-11-2021:07:00
web.nvd.nist.gov
23
cve
2006
5975
xss
vulnerabilities
blogme 3.0
comments.asp
remote attackers
web script
html

6 Medium

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.011 Low

EPSS

Percentile

84.7%

Multiple cross-site scripting (XSS) vulnerabilities in comments.asp in BlogMe 3.0 allow remote attackers to inject arbitrary web script or HTML via the (1) Name, (2) URL, or (3) Comments field.

Affected configurations

NVD
Node
drumsterblogmeMatch3.0
CPENameOperatorVersion
drumster:blogmedrumster blogmeeq3.0

6 Medium

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.011 Low

EPSS

Percentile

84.7%

Related for CVE-2006-5975