4.3
CVE-2006-0330
- EPSS 1.35%
- Veröffentlicht 21.01.2006 00:03:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
- Quelle cve@mitre.org
- Teams Watchlist Login
- Unerledigt Login
Cross-site scripting (XSS) vulnerability in Gallery before 1.5.2 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors, possibly involving the user name (fullname).
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Gallery Project ≫ Gallery Version1.3.4
Gallery Project ≫ Gallery Version1.4
Gallery Project ≫ Gallery Version1.4.1
Gallery Project ≫ Gallery Version1.4.2
Gallery Project ≫ Gallery Version1.4.3_pl1
Gallery Project ≫ Gallery Version1.4.3_pl2
Gallery Project ≫ Gallery Version1.4.4_pl2
Gallery Project ≫ Gallery Version1.4.4_pl3
Gallery Project ≫ Gallery Version1.4.4_pl4
Gallery Project ≫ Gallery Version1.4.4_pl5
Gallery Project ≫ Gallery Version1.4_pl1
Gallery Project ≫ Gallery Version1.4_pl2
Gallery Project ≫ Gallery Version1.5
Gallery Project ≫ Gallery Version1.5.1
Gallery Project ≫ Gallery Version1.5.1_rc2
Gallery Project ≫ Gallery Version1.5.2_rc2
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
Typ | Quelle | Score | Percentile |
---|---|---|---|
EPSS | FIRST.org | 1.35% | 0.782 |
Quelle | Base Score | Exploit Score | Impact Score | Vector String |
---|---|---|---|---|
nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:N/I:P/A:N
|