CVE-2006-0471

2006-01-3111:00:00

mitre

www.cve.org

5.8 Medium

AI Score

Confidence

High

0.016 Low

EPSS

Percentile

87.2%

JSON

Cross-site scripting (XSS) vulnerability in the bbcode function in functions.php in my little homepage my little forum, as last modified in June 2005, allows remote attackers to inject arbitrary Javascript via a javascript URI in BBcode link tags.

References

attrition.org/pipermail/vim/2006-January/000520.html

evuln.com/vulns/51/

evuln.com/vulns/51/summary.html

secunia.com/advisories/18628

www.osvdb.org/22856

www.securityfocus.com/archive/1/423167/100/0/threaded

www.securityfocus.com/bid/16395

www.vupen.com/english/advisories/2006/0349

exchange.xforce.ibmcloud.com/vulnerabilities/24310