nvd-json-data-feeds/CVE-2006/CVE-2006-30xx/CVE-2006-3031.json

{
  "id": "CVE-2006-3031",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2006-06-15T10:02:00.000",
  "lastModified": "2017-07-20T01:31:59.257",
  "vulnStatus": "Modified",
  "descriptions": [
    {
      "lang": "en",
      "value": "Multiple cross-site scripting (XSS) vulnerabilities in index.asp in fipsCMS 4.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) w, (2) phcat, (3) dayid, and (4) calw parameters."
    },
    {
      "lang": "es",
      "value": "M\u00faltiples vulnerabilidades XSS en index.asp en fipsCMS v4.5 y anteriores permite a atacantes remotos inyectar secuencias de comandos web y HTML arbitrarias a trav\u00e9s de los par\u00e1metros (1) w, (2) phcat, (3) dayid y (4) calw."
    }
  ],
  "metrics": {
    "cvssMetricV2": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "2.0",
          "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
          "accessVector": "NETWORK",
          "accessComplexity": "MEDIUM",
          "authentication": "NONE",
          "confidentialityImpact": "NONE",
          "integrityImpact": "PARTIAL",
          "availabilityImpact": "NONE",
          "baseScore": 4.3
        },
        "baseSeverity": "MEDIUM",
        "exploitabilityScore": 8.6,
        "impactScore": 2.9,
        "acInsufInfo": false,
        "obtainAllPrivilege": false,
        "obtainUserPrivilege": false,
        "obtainOtherPrivilege": false,
        "userInteractionRequired": false
      }
    ]
  },
  "weaknesses": [
    {
      "source": "nvd@nist.gov",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ]
    }
  ],
  "configurations": [
    {
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:fipsasp:fipscms:*:*:*:*:*:*:*:*",
              "versionEndIncluding": "4.5",
              "matchCriteriaId": "ACE65BDB-6A1C-4D52-B1B4-D07EBBAAAE63"
            }
          ]
        }
      ]
    }
  ],
  "references": [
    {
      "url": "http://pridels0.blogspot.com/2006/06/fipscms-v45-xss-vuln.html",
      "source": "cve@mitre.org"
    },
    {
      "url": "http://www.vupen.com/english/advisories/2006/2293",
      "source": "cve@mitre.org"
    },
    {
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27076",
      "source": "cve@mitre.org"
    }
  ]
}
bootstrap 2023-04-24 12:24:31 +02:00			`{`
			`"id": "CVE-2006-3031",`
			`"sourceIdentifier": "cve@mitre.org",`
			`"published": "2006-06-15T10:02:00.000",`
			`"lastModified": "2017-07-20T01:31:59.257",`
			`"vulnStatus": "Modified",`
			`"descriptions": [`
			`{`
			`"lang": "en",`
			`"value": "Multiple cross-site scripting (XSS) vulnerabilities in index.asp in fipsCMS 4.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) w, (2) phcat, (3) dayid, and (4) calw parameters."`
			`},`
			`{`
			`"lang": "es",`
			`"value": "M\u00faltiples vulnerabilidades XSS en index.asp en fipsCMS v4.5 y anteriores permite a atacantes remotos inyectar secuencias de comandos web y HTML arbitrarias a trav\u00e9s de los par\u00e1metros (1) w, (2) phcat, (3) dayid y (4) calw."`
			`}`
			`],`
			`"metrics": {`
			`"cvssMetricV2": [`
			`{`
			`"source": "nvd@nist.gov",`
			`"type": "Primary",`
			`"cvssData": {`
			`"version": "2.0",`
			`"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",`
			`"accessVector": "NETWORK",`
			`"accessComplexity": "MEDIUM",`
			`"authentication": "NONE",`
			`"confidentialityImpact": "NONE",`
			`"integrityImpact": "PARTIAL",`
			`"availabilityImpact": "NONE",`
			`"baseScore": 4.3`
			`},`
			`"baseSeverity": "MEDIUM",`
			`"exploitabilityScore": 8.6,`
			`"impactScore": 2.9,`
			`"acInsufInfo": false,`
			`"obtainAllPrivilege": false,`
			`"obtainUserPrivilege": false,`
			`"obtainOtherPrivilege": false,`
			`"userInteractionRequired": false`
			`}`
			`]`
			`},`
			`"weaknesses": [`
			`{`
			`"source": "nvd@nist.gov",`
			`"type": "Primary",`
			`"description": [`
			`{`
			`"lang": "en",`
			`"value": "NVD-CWE-Other"`
			`}`
			`]`
			`}`
			`],`
			`"configurations": [`
			`{`
			`"nodes": [`
			`{`
			`"operator": "OR",`
			`"negate": false,`
			`"cpeMatch": [`
			`{`
			`"vulnerable": true,`
			`"criteria": "cpe:2.3:a:fipsasp:fipscms::::::::",`
			`"versionEndIncluding": "4.5",`
			`"matchCriteriaId": "ACE65BDB-6A1C-4D52-B1B4-D07EBBAAAE63"`
			`}`
			`]`
			`}`
			`]`
			`}`
			`],`
			`"references": [`
			`{`
			`"url": "http://pridels0.blogspot.com/2006/06/fipscms-v45-xss-vuln.html",`
			`"source": "cve@mitre.org"`
			`},`
			`{`
			`"url": "http://www.vupen.com/english/advisories/2006/2293",`
			`"source": "cve@mitre.org"`
			`},`
			`{`
			`"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27076",`
			`"source": "cve@mitre.org"`
			`}`
			`]`
			`}`