CVE-2006-0661

Опубликовано: 13 фев. 2006

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in Scriptme SmE GB Host 1.21 and SmE Blog Host allows remote attackers to inject arbitrary web script or HTML via the BBcode url tag.

Ссылки

http://evuln.com/vulns/65/summary.html
Vendor Advisory
http://secunia.com/advisories/18786
Vendor Advisory
http://securityreason.com/securityalert/447
http://www.securityfocus.com/bid/16585
http://www.vupen.com/english/advisories/2006/0504
https://exchange.xforce.ibmcloud.com/vulnerabilities/24543
http://evuln.com/vulns/65/summary.html
Vendor Advisory
http://secunia.com/advisories/18786
Vendor Advisory
http://securityreason.com/securityalert/447
http://www.securityfocus.com/bid/16585
http://www.vupen.com/english/advisories/2006/0504
https://exchange.xforce.ibmcloud.com/vulnerabilities/24543

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:scriptme:sme_blog_host:*:*:*:*:*:*:*:*

cpe:2.3:a:scriptme:sme_gb_host:1.21:*:*:*:*:*:*:*

EPSS

Процентиль: 68%

0.00572

Низкий

4.3 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-48p4-hjrh-5j5v

github

почти 4 года назад