Vulnerability Details CVE-2006-7023
Multiple cross-site scripting (XSS) vulnerabilities in fx-APP 0.0.8.1 allow remote attackers to inject arbitrary HTML or web script via (1) the search box, and the (2) url, (3) website, (4) comment, and (5) signature fields in the profile, and possibly (6) a menu item.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 56.9%
CVSS Severity
CVSS v2 Score 4.3
References
- http://securityreason.com/securityalert/2251
- http://www.securityfocus.com/archive/1/436691/30/4500/threaded
- http://www.securityfocus.com/archive/1/469825/100/100/threaded
- http://www.securityfocus.com/bid/18361
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27167
- http://securityreason.com/securityalert/2251
- http://www.securityfocus.com/archive/1/436691/30/4500/threaded
- http://www.securityfocus.com/archive/1/469825/100/100/threaded
- http://www.securityfocus.com/bid/18361
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27167