4.3
CVE-2006-0664
- EPSS 1.2%
- Veröffentlicht 13.02.2006 11:06:00
- Zuletzt bearbeitet 16.06.2026 22:21:02
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Cross-site scripting (XSS) vulnerability in config_defaults_inc.php in Mantis before 1.0 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. An original vendor bug report is referenced, but not accessible to the general public.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.2% | 0.641 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:N/I:P/A:N
|
http://secunia.com/advisories/21400
http://www.debian.org/security/2006/dsa-1133
http://www.securityfocus.com/bid/16561
http://www.vupen.com/english/advisories/2006/0485
https://exchange.xforce.ibmcloud.com/vulnerabilities/24585