CVE-2006-1950

Опубликовано: 20 апр. 2006

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Multiple cross-site scripting (XSS) vulnerabilities in banners.cgi in PerlCoders BannerFarm 2.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) aff and (2) cat parameters.

Ссылки

http://pridels0.blogspot.com/2006/04/bannerfarm-xss-vuln.html
http://secunia.com/advisories/19718
Vendor Advisory
http://www.osvdb.org/24728
http://www.securityfocus.com/bid/17613
Exploit
http://www.vupen.com/english/advisories/2006/1410
https://exchange.xforce.ibmcloud.com/vulnerabilities/25919
http://pridels0.blogspot.com/2006/04/bannerfarm-xss-vuln.html
http://secunia.com/advisories/19718
Vendor Advisory
http://www.osvdb.org/24728
http://www.securityfocus.com/bid/17613
Exploit
http://www.vupen.com/english/advisories/2006/1410
https://exchange.xforce.ibmcloud.com/vulnerabilities/25919

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:perlcoders_group:bannerfarm:2.3:*:*:*:*:*:*:*

EPSS

Процентиль: 73%

0.00783

Низкий

4.3 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-rwvj-rq8g-rf43

github

почти 4 года назад