CVE-2006-6669

Опубликовано: 20 дек. 2006

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 6.8

Описание

Cross-site scripting (XSS) vulnerability in export_handler.php in WebCalendar 1.0.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the format parameter.

Релиз	Статус	Примечание
dapper	ignored	end of life
devel	released	1.0.5-12
edgy	ignored	end of life, was needed
feisty	DNE
gutsy	released	1.0.5-12
hardy	released	1.0.5-12
intrepid	released	1.0.5-12
jaunty	released	1.0.5-12
karmic	released	1.0.5-12
upstream	needs-triage

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2006-6669

EPSS

Процентиль: 80%

0.0157

Низкий

6.8 Medium

CVSS2

Связанные уязвимости

CVE-2006-6669

nvd

почти 19 лет назад

Cross-site scripting (XSS) vulnerability in export_handler.php in WebCalendar 1.0.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the format parameter.

CVE-2006-6669

debian

почти 19 лет назад

Cross-site scripting (XSS) vulnerability in export_handler.php in WebC ...

GHSA-6xqp-5jcx-vcqq

github

больше 3 лет назад

Cross-site scripting (XSS) vulnerability in export_handler.php in WebCalendar 1.0.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the format parameter.

EPSS

Процентиль: 80%

0.0157

Низкий

6.8 Medium

CVSS2

CVE-2006-6669

Описание

Пакет webcalendar

Ссылки на источники

Связанные уязвимости