Lucene search

[email protected]NVD:CVE-2006-0603

HistoryFeb 08, 2006 - 11:02 p.m.

CVE-2006-0603

2006-02-0823:02:00

CWE-79

[email protected]

web.nvd.nist.gov

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

AI Score

6.1

Confidence

High

EPSS

0.008

Percentile

81.7%

JSON

Multiple cross-site scripting vulnerabilities in signed.php in Hinton Design phphg Guestbook 1.2 allow remote attackers to inject arbitrary web script or HTML via the (1) location, (2) website, or (3) message parameter.

Affected configurations

Nvd

Node

hinton_designphphg_guestbookMatch1.2

VendorProductVersionCPE
hinton_designphphg_guestbook1.2cpe:2.3:a:hinton_design:phphg_guestbook:1.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
hinton_design	phphg_guestbook	1.2	cpe:2.3:a:hinton_design:phphg_guestbook:1.2:::::::*

References

evuln.com/vulns/58/summary.html

secunia.com/advisories/18758

securitytracker.com/id?1015620

www.securityfocus.com/archive/1/424740/100/0/threaded

www.securityfocus.com/bid/16541

www.vupen.com/english/advisories/2006/0480

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

AI Score

6.1

Confidence

High

EPSS

0.008

Percentile

81.7%

JSON

Related for NVD:CVE-2006-0603

prion1 cvelist1 cve1 packetstorm1 securityvulns1