CVE

Id
22278  
CVE No.
CVE-2006-6174  
Status
Candidate  
Description
Cross-site scripting (XSS) vulnerability in tDiary before 2.0.3 and 2.1.x before 2.1.4.20061126 allows remote attackers to inject arbitrary web script or HTML via the conf parameter in (1) tdiary.rb and (2) skel/conf.rhtml.  
Phase
Assigned (20061130)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
215365 22278 CVE-2006-6174 MISC:http://www.tdiary.org/download/tdiary.20061126.patch  View
215366 22278 CVE-2006-6174 CONFIRM:http://sourceforge.net/forum/forum.php?forum_id=638868  View
215367 22278 CVE-2006-6174 CONFIRM:http://www.tdiary.org/20061126.html  View
215368 22278 CVE-2006-6174 JVN:JVN#47223461  View
215369 22278 CVE-2006-6174 URL:http://jvn.jp/jp/JVN%2347223461/index.html  View
215370 22278 CVE-2006-6174 BID:21321  View
215371 22278 CVE-2006-6174 URL:http://www.securityfocus.com/bid/21321  View
215372 22278 CVE-2006-6174 VUPEN:ADV-2006-4722  View
215373 22278 CVE-2006-6174 URL:http://www.vupen.com/english/advisories/2006/4722  View
215374 22278 CVE-2006-6174 OSVDB:30701  View
215375 22278 CVE-2006-6174 URL:http://www.osvdb.org/30701  View
215376 22278 CVE-2006-6174 OSVDB:31993  View
215377 22278 CVE-2006-6174 URL:http://www.osvdb.org/31993  View
215378 22278 CVE-2006-6174 SECUNIA:23092  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
58606 JVNDB-2006-000802 Blogn(ぶろぐん) におけるクロスサイトスクリプティングの脆弱性 R-ONE コンピューターが提供するブログ作成用スクリプト Blogn (ぶろぐん) には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2006-6176 22278 4.3 http://jvndb.jvn.jp/ja/contents/2006/JVNDB-2006-000802.html  View