6.8
CVE-2006-4474
- EPSS 1.25%
- Veröffentlicht 31.08.2006 20:04:00
- Zuletzt bearbeitet 16.06.2026 22:29:10
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Multiple cross-site scripting (XSS) vulnerabilities in Joomla! before 1.0.11 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters in (1) Admin Module Manager, (2) Admin Help, and (3) Search.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.25% | 0.655 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.8 | 8.6 | 6.4 |
AV:N/AC:M/Au:N/C:P/I:P/A:P
|
http://www.joomla.org/content/view/1841/78/
http://www.vupen.com/english/advisories/2006/3408
http://secunia.com/advisories/21666
http://www.joomla.org/content/view/1843/74/
https://exchange.xforce.ibmcloud.com/vulnerabilities/28633