exploitDog

CVE-2006-2567

Опубликовано: 24 мая 2006

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in submit_article.php in Alstrasoft Article Manager Pro 1.6 allows remote attackers to inject arbitrary web script or HTML when submitting an article, as demonstrated using a javascript URI in a Cascading Style Sheets (CSS) property of a STYLE attribute of an element.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:alstrasoft:article_manager_pro:1.6:*:*:*:*:*:*:*

EPSS

Процентиль: 61%

0.00416

Низкий

4.3 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-chvp-cwr8-jphq

github

почти 4 года назад

Cross-site scripting (XSS) vulnerability in submit_article.php in Alstrasoft Article Manager Pro 1.6 allows remote attackers to inject arbitrary web script or HTML when submitting an article, as demonstrated using a javascript URI in a Cascading Style Sheets (CSS) property of a STYLE attribute of an element.

EPSS

Процентиль: 61%

0.00416

Низкий

4.3 Medium

CVSS2

Дефекты

NVD-CWE-Other