CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Bit 5 Blog: >> Bit 5 Blog >> 8.01 Security Vulnerabilities

CVE-2006-0361

Cross-site scripting (XSS) vulnerability in addcomment.php in Bit 5 Blog 8.01 allows remote attackers to inject arbitrary web script or HTML via a javascript URI in an <a> tag in the comment parameter, which strips most tags but not <a>.

CVSS Score

4.3

EPSS Score

0.12

Published

2006-01-22

Page 1

Vulnerabilities

Vulnerable Software

Bit 5 Blog: >> Bit 5 Blog >> 8.01 Security Vulnerabilities

Products

Pricing

Contact Us