CVE-2006-1064

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2006-1064
Multiple cross-site scripting (XSS) vulnerabilities in Lurker 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via unknown attack vectors.

2.6 /10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:N/AC:H/Au:N/C:N/I:P/A:N

Exploitability : 4.9 / Impact : 2.9

Access Vector NETWORK

Access Complexity HIGH

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References
Link Resource
http://secunia.com/advisories/19136 Patch Vendor Advisory
http://secunia.com/advisories/19145
http://sourceforge.net/project/shownotes.php?release_id=399034&group_id=8168 Patch
http://terpstra.ca/lurker/message/20060302.130003.4c5c2680.en.html Vendor Advisory
http://www.debian.org/security/2006/dsa-999
http://www.osvdb.org/23696
http://www.securityfocus.com/bid/17003
http://www.vupen.com/english/advisories/2006/0850
https://exchange.xforce.ibmcloud.com/vulnerabilities/25154
http://secunia.com/advisories/19136 Patch Vendor Advisory
http://secunia.com/advisories/19145
http://sourceforge.net/project/shownotes.php?release_id=399034&group_id=8168 Patch
http://terpstra.ca/lurker/message/20060302.130003.4c5c2680.en.html Vendor Advisory
http://www.debian.org/security/2006/dsa-999
http://www.osvdb.org/23696
http://www.securityfocus.com/bid/17003
http://www.vupen.com/english/advisories/2006/0850
https://exchange.xforce.ibmcloud.com/vulnerabilities/25154
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:lurker:lurker:0.1a:*:*:*:*:*:*:*
cpe:2.3:a:lurker:lurker:2.0:*:*:*:*:*:*:*
History

21 Nov 2024, 00:07

Type Values Removed Values Added
References () http://secunia.com/advisories/19136 - Patch, Vendor Advisory () http://secunia.com/advisories/19136 - Patch, Vendor Advisory
References () http://secunia.com/advisories/19145 - () http://secunia.com/advisories/19145 -
References () http://sourceforge.net/project/shownotes.php?release_id=399034&group_id=8168 - Patch () http://sourceforge.net/project/shownotes.php?release_id=399034&group_id=8168 - Patch
References () http://terpstra.ca/lurker/message/20060302.130003.4c5c2680.en.html - Vendor Advisory () http://terpstra.ca/lurker/message/20060302.130003.4c5c2680.en.html - Vendor Advisory
References () http://www.debian.org/security/2006/dsa-999 - () http://www.debian.org/security/2006/dsa-999 -
References () http://www.osvdb.org/23696 - () http://www.osvdb.org/23696 -
References () http://www.securityfocus.com/bid/17003 - () http://www.securityfocus.com/bid/17003 -
References () http://www.vupen.com/english/advisories/2006/0850 - () http://www.vupen.com/english/advisories/2006/0850 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/25154 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/25154 -
Information

Published : 2006-03-07 21:06

Updated : 2025-04-03 01:03

NVD link : CVE-2006-1064

Mitre link : CVE-2006-1064

CVE.ORG link : CVE-2006-1064

JSON object : View

Products Affected

lurker

  • lurker
CWE
NVD-CWE-Other