NVD

Id
63845  
Name
CVE-2006-5239  
Description
Multiple cross-site scripting (XSS) vulnerabilities in eXpBlog 0.3.5 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the query string (PHP_SELF) in kalender.php or (2) the captcha_session_code parameter in pre_details.php.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2016-12-20  
Published
2006-10-11  
Modified Date
2016-10-17  
Seq
2006-5239  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
332777 63845 CVE-2006-5239 20061009 eXpBlog <= 0.3.5 Cross Site Scripting  View
332778 63845 CVE-2006-5239 1017028  View
332779 63845 CVE-2006-5239 http://www.expblog.de/board/viewtopic.php?t=317  View
332780 63845 CVE-2006-5239 20061009 eXpBlog <= 0.3.5 Cross Site Scripting Vulnerabilities  View
332781 63845 CVE-2006-5239 20420  View
332782 63845 CVE-2006-5239 ADV-2006-3973  View
332783 63845 CVE-2006-5239 expblog-multiple-xss(29409)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
59106 JVNDB-2006-001372 eXpBlog におけるクロスサイトスクリプティングの脆弱性 eXpBlog には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2006-5239 21341 CVE-2006-5239 63845 4.3 http://jvndb.jvn.jp/ja/contents/2006/JVNDB-2006-001372.html 2006-10-11 2012-06-26 View