Lucene search

[email protected]NVD:CVE-2006-2176

HistoryMay 04, 2006 - 12:38 p.m.

CVE-2006-2176

2006-05-0412:38:00

[email protected]

web.nvd.nist.gov

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

AI Score

5.8

Confidence

High

EPSS

0.008

Percentile

81.6%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in links.php in PHP Linkliste 1.0b allow remote attackers to inject arbitrary web script or HTML via the (1) new_input, (2) new_url, or (3) new_name parameter.

Affected configurations

Nvd

Node

php_design_xphp_linklisteMatch1.0b

VendorProductVersionCPE
php_design_xphp_linkliste1.0bcpe:2.3:a:php_design_x:php_linkliste:1.0b:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
php_design_x	php_linkliste	1.0b	cpe:2.3:a:php_design_x:php_linkliste:1.0b:::::::*

References

d4igoro.blogspot.com/2006/05/php-linkliste-10b-xss.html

secunia.com/advisories/19925

www.securityfocus.com/bid/17828

www.vupen.com/english/advisories/2006/1627

exchange.xforce.ibmcloud.com/vulnerabilities/26229

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

AI Score

5.8

Confidence

High

EPSS

0.008

Percentile

81.6%

JSON

Related for NVD:CVE-2006-2176

cvelist1 exploitdb1 cve1 prion1