Vulnerability Details CVE-2006-0776
Cross-site scripting (XSS) vulnerability in guestex.pl in Teca Scripts Guestex 1.0 allows remote attackers to inject arbitrary web script or HTML via the url parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 73.2%
CVSS Severity
CVSS v2 Score 4.3
References
- http://secunia.com/advisories/18927
- http://securityreason.com/securityalert/490
- http://securitytracker.com/id?1015678
- http://www.evuln.com/vulns/77/summary.html
- http://www.osvdb.org/23182
- http://www.securityfocus.com/archive/1/426034/100/0/threaded
- http://www.securityfocus.com/bid/16711
- http://www.vupen.com/english/advisories/2006/0640
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24644
- http://secunia.com/advisories/18927
- http://securityreason.com/securityalert/490
- http://securitytracker.com/id?1015678
- http://www.evuln.com/vulns/77/summary.html
- http://www.osvdb.org/23182
- http://www.securityfocus.com/archive/1/426034/100/0/threaded
- http://www.securityfocus.com/bid/16711
- http://www.vupen.com/english/advisories/2006/0640
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24644
Products affected by CVE-2006-0776
-
cpe:2.3:a:teca_scripts:guestex:1.0