CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Tdiary: >> Tdiary >> 2.1.4.2006-11-15 Security Vulnerabilities

CVE-2010-0726

Cross-site scripting (XSS) vulnerability in the tb-send.rb (TrackBack transmission) plugin in tDiary 2.2.2 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown vectors, possibly related to the (1) plugin_tb_url and (2) plugin_tb_excerpt parameters.

CVSS Score

4.3

EPSS Score

0.004

Published

2010-03-02

CVE-2006-6174

Cross-site scripting (XSS) vulnerability in tDiary before 2.0.3 and 2.1.x before 2.1.4.20061126 allows remote attackers to inject arbitrary web script or HTML via the conf parameter in (1) tdiary.rb and (2) skel/conf.rhtml.

CVSS Score

4.3

EPSS Score

0.008

Published

2006-11-30

Page 1

Vulnerabilities

Vulnerable Software

Tdiary: >> Tdiary >> 2.1.4.2006-11-15 Security Vulnerabilities

Products

Pricing

Contact Us