Lucene search

K
nvd[email protected]NVD:CVE-2006-2699
HistoryMay 31, 2006 - 10:06 a.m.

CVE-2006-2699

2006-05-3110:06:00
web.nvd.nist.gov
1

5.8 Medium

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.019 Low

EPSS

Percentile

88.7%

Cross-site scripting (XSS) vulnerability in getimage.php in Geeklog 1.4.0sr2 and earlier allows remote attackers to inject arbitrary HTML or web script via the image argument in a show action.

Affected configurations

NVD
Node
geekloggeeklogMatch1.3
OR
geekloggeeklogMatch1.3.5
OR
geekloggeeklogMatch1.3.5_sr1
OR
geekloggeeklogMatch1.3.6
OR
geekloggeeklogMatch1.3.7
OR
geekloggeeklogMatch1.3.7_sr1
OR
geekloggeeklogMatch1.3.7_sr2
OR
geekloggeeklogMatch1.3.7_sr3
OR
geekloggeeklogMatch1.3.7_sr4
OR
geekloggeeklogMatch1.3.7_sr5
OR
geekloggeeklogMatch1.3.8
OR
geekloggeeklogMatch1.3.8_1
OR
geekloggeeklogMatch1.3.8_1_sr1
OR
geekloggeeklogMatch1.3.8_1_sr2
OR
geekloggeeklogMatch1.3.8_1_sr3
OR
geekloggeeklogMatch1.3.8_1_sr4
OR
geekloggeeklogMatch1.3.8_1_sr5
OR
geekloggeeklogMatch1.3.8_1_sr6
OR
geekloggeeklogMatch1.3.9
OR
geekloggeeklogMatch1.3.9_rc1
OR
geekloggeeklogMatch1.3.9_rc2
OR
geekloggeeklogMatch1.3.9_rc3
OR
geekloggeeklogMatch1.3.9_sr1
OR
geekloggeeklogMatch1.3.9_sr2
OR
geekloggeeklogMatch1.3.9_sr3
OR
geekloggeeklogMatch1.3.9_sr4
OR
geekloggeeklogMatch1.3.10
OR
geekloggeeklogMatch1.3.10_rc1
OR
geekloggeeklogMatch1.3.10_rc2
OR
geekloggeeklogMatch1.3.10_rc3
OR
geekloggeeklogMatch1.3.11
OR
geekloggeeklogMatch1.3.11_rc1
OR
geekloggeeklogMatch1.3.11_sr1
OR
geekloggeeklogMatch1.3.11_sr2
OR
geekloggeeklogMatch1.3.11_sr3
OR
geekloggeeklogMatch1.3.11_sr4
OR
geekloggeeklogMatch1.4.0
OR
geekloggeeklogMatch1.4.0_beta1
OR
geekloggeeklogMatch1.4.0_sr1
OR
geekloggeeklogMatch1.4.0_sr2
OR
geekloggeeklogMatch1.35

5.8 Medium

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.019 Low

EPSS

Percentile

88.7%

Related for NVD:CVE-2006-2699