CVE-2006-0682

Multiple cross-site scripting (XSS) vulnerabilities in bbcodes system in e107 before 0.7.2 allow remote attackers to inject arbitrary web script or HTML via unknown attack vectors.

CVSS v2.0 4.3 MEDIUM

4.3^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability : 8.6 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://e107.org/comment.php?comment.news.776
http://secunia.com/advisories/18816	Patch Vendor Advisory
http://www.securityfocus.com/bid/16614
http://www.vupen.com/english/advisories/2006/0540
https://exchange.xforce.ibmcloud.com/vulnerabilities/24625
http://e107.org/comment.php?comment.news.776
http://secunia.com/advisories/18816	Patch Vendor Advisory
http://www.securityfocus.com/bid/16614
http://www.vupen.com/english/advisories/2006/0540
https://exchange.xforce.ibmcloud.com/vulnerabilities/24625

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:e107:e107:0.7:::::::*
	cpe:2.3:a:e107:e107:0.7.1:::::::*
	cpe:2.3:a:e107:e107:0.547_beta:::::::*
	cpe:2.3:a:e107:e107:0.548_beta:::::::*
	cpe:2.3:a:e107:e107:0.549_beta:::::::*
	cpe:2.3:a:e107:e107:0.551_beta:::::::*
	cpe:2.3:a:e107:e107:0.552_beta:::::::*
	cpe:2.3:a:e107:e107:0.553_beta:::::::*
	cpe:2.3:a:e107:e107:0.554_beta:::::::*
	cpe:2.3:a:e107:e107:0.555_beta:::::::*
	cpe:2.3:a:e107:e107:0.600:::::::*
	cpe:2.3:a:e107:e107:0.601:::::::*
	cpe:2.3:a:e107:e107:0.602:::::::*
	cpe:2.3:a:e107:e107:0.603:::::::*
	cpe:2.3:a:e107:e107:0.604:::::::*
	cpe:2.3:a:e107:e107:0.605:::::::*
	cpe:2.3:a:e107:e107:0.606:::::::*
	cpe:2.3:a:e107:e107:0.607:::::::*
	cpe:2.3:a:e107:e107:0.608:::::::*
	cpe:2.3:a:e107:e107:0.609:::::::*
	cpe:2.3:a:e107:e107:0.610:::::::*
	cpe:2.3:a:e107:e107:0.611:::::::*
	cpe:2.3:a:e107:e107:0.612:::::::*
	cpe:2.3:a:e107:e107:0.613:::::::*
	cpe:2.3:a:e107:e107:0.614:::::::*
	cpe:2.3:a:e107:e107:0.615:::::::*
	cpe:2.3:a:e107:e107:0.615a:::::::*
	cpe:2.3:a:e107:e107:0.616:::::::*
	cpe:2.3:a:e107:e107:0.617:::::::*
	cpe:2.3:a:e107:e107:0.6171:::::::*
	cpe:2.3:a:e107:e107:0.6172:::::::*
	cpe:2.3:a:e107:e107:0.6173:::::::*
	cpe:2.3:a:e107:e107:0.6174:::::::*
	cpe:2.3:a:e107:e107:0.6175:::::::*
	cpe:2.3:a:e107:e107:5.1:::::::*
	cpe:2.3:a:e107:e107:5.2:::::::*
	cpe:2.3:a:e107:e107:5.3_beta:::::::*
	cpe:2.3:a:e107:e107:5.3_beta2:::::::*
	cpe:2.3:a:e107:e107:5.04:::::::*
	cpe:2.3:a:e107:e107:5.4_beta1:::::::*
	cpe:2.3:a:e107:e107:5.4_beta3:::::::*
	cpe:2.3:a:e107:e107:5.4_beta4:::::::*
	cpe:2.3:a:e107:e107:5.4_beta5:::::::*
	cpe:2.3:a:e107:e107:5.4_beta6:::::::*
	cpe:2.3:a:e107:e107:5.05:::::::*

History

21 Nov 2024, 00:07

Type	Values Removed	Values Added
References	~~() http://e107.org/comment.php?comment.news.776 -~~	() http://e107.org/comment.php?comment.news.776 -
References	~~() http://secunia.com/advisories/18816 - Patch, Vendor Advisory~~	() http://secunia.com/advisories/18816 - Patch, Vendor Advisory
References	~~() http://www.securityfocus.com/bid/16614 -~~	() http://www.securityfocus.com/bid/16614 -
References	~~() http://www.vupen.com/english/advisories/2006/0540 -~~	() http://www.vupen.com/english/advisories/2006/0540 -
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/24625 -~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/24625 -

Information

Published : 2006-02-15 00:02

Updated : 2024-11-21 00:07

NVD link : CVE-2006-0682

Mitre link : CVE-2006-0682

CVE.ORG link : CVE-2006-0682

JSON object : View

Products Affected

e107

e107

CWE

NVD-CWE-Other

4.3 /10