2.6
CVE-2006-2572
- EPSS 1.37%
- Veröffentlicht 24.05.2006 23:02:00
- Zuletzt bearbeitet 16.06.2026 22:25:21
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginCross-site scripting (XSS) vulnerability in index.php in DGBook 1.0 allows remote attackers to inject arbitrary web script or HTML via the (1) name, (2) homepage, (3) email, and (4) address parameters.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Dian Gemilang ≫ Dgbook Version1.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.37% | 0.682 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 2.6 | 4.9 | 2.9 |
AV:N/AC:H/Au:N/C:N/I:P/A:N
|
http://secunia.com/advisories/20201
http://securityreason.com/securityalert/948
http://www.osvdb.org/25732
http://www.securityfocus.com/archive/1/434869/100/0/threaded
http://www.securityfocus.com/archive/1/436615/100/0/threaded
http://www.securityfocus.com/bid/18310
http://www.vupen.com/english/advisories/2006/1942
https://exchange.xforce.ibmcloud.com/vulnerabilities/26629