Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2006-7073

Опубликовано: 02 мар. 2007
Источник: nvd
CVSS2: 4.3
EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in Opentools Attachment Mod before 2.4.5 allows remote attackers to inject arbitrary web script or HTML in Internet Explorer via unknown vectors related to the uploaded attachments form. NOTE: some details were obtained from third party information.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:opentools:attachment_mod:2.4.0a:*:*:*:*:*:*:*
cpe:2.3:a:opentools:attachment_mod:2.4.1:*:*:*:*:*:*:*
cpe:2.3:a:opentools:attachment_mod:2.4.2:*:*:*:*:*:*:*
cpe:2.3:a:opentools:attachment_mod:2.4.3:*:*:*:*:*:*:*
cpe:2.3:a:opentools:attachment_mod:2.4.4:*:*:*:*:*:*:*

EPSS

Процентиль: 61%
0.00411
Низкий

4.3 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

github логотип

GHSA-2mv3-9m4h-pmr6

github
почти 4 года назад

Cross-site scripting (XSS) vulnerability in Opentools Attachment Mod before 2.4.5 allows remote attackers to inject arbitrary web script or HTML in Internet Explorer via unknown vectors related to the uploaded attachments form. NOTE: some details were obtained from third party information.

EPSS

Процентиль: 61%
0.00411
Низкий

4.3 Medium

CVSS2

Дефекты

NVD-CWE-Other