Lucene search

PRIOn knowledge basePRION:CVE-2006-2321

HistoryMay 12, 2006 - 12:02 a.m.

Cross site scripting

2006-05-1200:02:00

PRIOn knowledge base

www.prio-n.com

5.8 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.006 Low

EPSS

Percentile

78.2%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in Ideal Science Ideal BB 1.5.4a and earlier allow remote attackers to inject arbitrary web script or HTML via unknown vectors. NOTE: due to lack of details from the researcher, it is not clear whether this overlaps CVE-2004-2207.

CPENameOperatorVersion
idealbbeq1.5.0-beta2
idealbbeq1.5.3
idealbbeq1.5.497
idealbbeq1.5.297
idealbbeq1.5.3-beta1
idealbbeq1.5.1
idealbbeq1.5.299
idealbbeq1.5.0-beta3
idealbbeq1.5.397
idealbbeq1.5.3-beta2

Name	Operator	Version
idealbb	eq	1.5.0-beta2
idealbb	eq	1.5.3
idealbb	eq	1.5.497
idealbb	eq	1.5.297
idealbb	eq	1.5.3-beta1
idealbb	eq	1.5.1
idealbb	eq	1.5.299
idealbb	eq	1.5.0-beta3
idealbb	eq	1.5.397
idealbb	eq	1.5.3-beta2

Rows per page:

1-10 of 161

References

secunia.com/advisories/20035

securityreason.com/securityalert/871

www.idealscience.com/ibb/posts.aspx?postID=24415

www.osvdb.org/25458

www.securityfocus.com/archive/1/433248/100/0/threaded

www.securityfocus.com/bid/17920

www.vupen.com/english/advisories/2006/1729

exchange.xforce.ibmcloud.com/vulnerabilities/26355

5.8 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.006 Low

EPSS

Percentile

78.2%

JSON

Related for PRION:CVE-2006-2321