4.3
CVE-2006-1202
- EPSS 1.94%
- Veröffentlicht 14.03.2006 01:06:00
- Zuletzt bearbeitet 16.06.2026 22:22:12
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginMultiple cross-site scripting (XSS) vulnerabilities in textfileBB 1.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) mess and (2) user parameters in messanger.php, possibly requiring a URL encoded value.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Jcink.Com ≫ Textfilebb Version1.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.94% | 0.775 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:N/I:P/A:N
|
http://notlegal.ws/textfilebbmessanger.txt
http://secunia.com/advisories/19149
http://securitytracker.com/id?1015744
http://www.securityfocus.com/archive/1/427081/100/0/threaded
http://www.securityfocus.com/bid/17029
http://www.vupen.com/english/advisories/2006/0897
https://exchange.xforce.ibmcloud.com/vulnerabilities/25091