CVE-2006-0366

2006-01-2220:00:00

mitre

www.cve.org

5.6 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

77.2%

JSON

Cross-site scripting (XSS) vulnerability in Phpclanwebsite (aka PCW) allows remote attackers to inject arbitrary web script or HTML via a javascript URI in a BBCode img tag.

References

secunia.com/advisories/18541

www.securityfocus.com/archive/1/422265/100/0/threaded

www.securityfocus.com/bid/16300

www.vupen.com/english/advisories/2006/0254

archive.cert.uni-stuttgart.de/bugtraq/2006/01/msg00343.html