mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-29 05:56:59 +00:00
112 lines
3.7 KiB
JSON
112 lines
3.7 KiB
JSON
{
|
|
"CVE_data_meta": {
|
|
"ASSIGNER": "cve@mitre.org",
|
|
"ID": "CVE-2006-2066",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "n/a",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "n/a"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format": "MITRE",
|
|
"data_type": "CVE",
|
|
"data_version": "4.0",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "Multiple cross-site scripting (XSS) vulnerabilities pm_popup.php in MKPortal 1.1 Rc1 and earlier, as used with vBulletin 3.5.4 and earlier, allow remote attackers to inject arbitrary web script or HTML via the (1) u1, (2) m1, (3) m2, (4) m3, (5) m4 parameters."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"name": "http://www.nukedx.com/?viewdoc=26",
|
|
"refsource": "MISC",
|
|
"url": "http://www.nukedx.com/?viewdoc=26"
|
|
},
|
|
{
|
|
"name": "1015977",
|
|
"refsource": "SECTRACK",
|
|
"url": "http://securitytracker.com/id?1015977"
|
|
},
|
|
{
|
|
"name": "20060927 MkPortal Cross Site Scripting (All versions) xSS",
|
|
"refsource": "BUGTRAQ",
|
|
"url": "http://www.securityfocus.com/archive/1/447195/100/0/threaded"
|
|
},
|
|
{
|
|
"name": "20060928 Re: xxs in MKPortal M1.1",
|
|
"refsource": "BUGTRAQ",
|
|
"url": "http://www.securityfocus.com/archive/1/447303/100/0/threaded"
|
|
},
|
|
{
|
|
"name": "ADV-2006-1485",
|
|
"refsource": "VUPEN",
|
|
"url": "http://www.vupen.com/english/advisories/2006/1485"
|
|
},
|
|
{
|
|
"name": "801",
|
|
"refsource": "SREASON",
|
|
"url": "http://securityreason.com/securityalert/801"
|
|
},
|
|
{
|
|
"name": "17651",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/17651"
|
|
},
|
|
{
|
|
"name": "20232",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/20232"
|
|
},
|
|
{
|
|
"name": "24901",
|
|
"refsource": "OSVDB",
|
|
"url": "http://www.osvdb.org/24901"
|
|
},
|
|
{
|
|
"name": "19786",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/19786"
|
|
},
|
|
{
|
|
"name": "20060421 vBulletin <= 3.5.4 with MKPortal 1.1 Remote SQL Injection Vulnerability.",
|
|
"refsource": "BUGTRAQ",
|
|
"url": "http://www.securityfocus.com/archive/1/431759/100/0/threaded"
|
|
}
|
|
]
|
|
}
|
|
} |