4.3

CVE-2006-1165

Cross-site scripting (XSS) vulnerability in the mediamanager module in DokuWiki before 2006-03-05 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors relating to "handling EXIF data."

Data is provided by the National Vulnerability Database (NVD)
Andreas GohrDokuwiki Versionrelease_2004-07-04
Andreas GohrDokuwiki Versionrelease_2004-07-07
Andreas GohrDokuwiki Versionrelease_2004-07-12
Andreas GohrDokuwiki Versionrelease_2004-07-21
Andreas GohrDokuwiki Versionrelease_2004-07-25
Andreas GohrDokuwiki Versionrelease_2004-08-08
Andreas GohrDokuwiki Versionrelease_2004-08-15a
Andreas GohrDokuwiki Versionrelease_2004-08-22
Andreas GohrDokuwiki Versionrelease_2004-09-12
Andreas GohrDokuwiki Versionrelease_2004-09-25
Andreas GohrDokuwiki Versionrelease_2004-09-30
Andreas GohrDokuwiki Versionrelease_2004-10-19
Andreas GohrDokuwiki Versionrelease_2004-11-01
Andreas GohrDokuwiki Versionrelease_2004-11-02
Andreas GohrDokuwiki Versionrelease_2004-11-10
Andreas GohrDokuwiki Versionrelease_2005-01-14
Andreas GohrDokuwiki Versionrelease_2005-01-15
Andreas GohrDokuwiki Versionrelease_2005-01-16a
Andreas GohrDokuwiki Versionrelease_2005-02-06
Andreas GohrDokuwiki Versionrelease_2005-02-18
Andreas GohrDokuwiki Versionrelease_2005-05-07
Andreas GohrDokuwiki Versionrelease_2005-07-01
Andreas GohrDokuwiki Versionrelease_2005-07-13
Andreas GohrDokuwiki Versionrelease_2005-09-19
Andreas GohrDokuwiki Versionrelease_2005-09-22
Andreas GohrDokuwiki Versionrelease_2006-03-05
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.43% 0.596
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 4.3 8.6 2.9
AV:N/AC:M/Au:N/C:N/I:P/A:N