CVE-2006-2765

Опубликовано: 02 июн. 2006

Источник: nvd

CVSS2: 2.6

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in news_information.php in Interlink Advantage allows remote attackers to inject arbitrary web script or HTML via the flag parameter.

Ссылки

http://archives.neohapsis.com/archives/bugtraq/2006-05/0395.html
Exploit
Vendor Advisory
http://securityreason.com/securityalert/1016
http://www.attrition.org/pipermail/vim/2006-June/000804.html
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/26615
http://archives.neohapsis.com/archives/bugtraq/2006-05/0395.html
Exploit
Vendor Advisory
http://securityreason.com/securityalert/1016
http://www.attrition.org/pipermail/vim/2006-June/000804.html
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/26615

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:interlink_advantage:interlink_advantage:*:*:*:*:*:*:*:*

EPSS

Процентиль: 61%

0.00409

Низкий

2.6 Low

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-f9rm-rv68-rvw6

github

почти 4 года назад