mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-05-28 01:02:25 +00:00
235 lines
8.6 KiB
JSON
235 lines
8.6 KiB
JSON
{
|
|
"id": "CVE-2006-0165",
|
|
"sourceIdentifier": "cve@mitre.org",
|
|
"published": "2006-01-11T21:03:00.000",
|
|
"lastModified": "2017-07-20T01:29:30.847",
|
|
"vulnStatus": "Modified",
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "Cross-site scripting (XSS) vulnerability in the DataForm Entries functionality in Plain Black WebGUI before 6.8.4 (gamma) allows remote attackers to inject arbitrary Javascript via the (1) url and (2) name field of the default email form."
|
|
}
|
|
],
|
|
"metrics": {
|
|
"cvssMetricV2": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"cvssData": {
|
|
"version": "2.0",
|
|
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
|
|
"accessVector": "NETWORK",
|
|
"accessComplexity": "MEDIUM",
|
|
"authentication": "NONE",
|
|
"confidentialityImpact": "NONE",
|
|
"integrityImpact": "PARTIAL",
|
|
"availabilityImpact": "NONE",
|
|
"baseScore": 4.3
|
|
},
|
|
"baseSeverity": "MEDIUM",
|
|
"exploitabilityScore": 8.6,
|
|
"impactScore": 2.9,
|
|
"acInsufInfo": false,
|
|
"obtainAllPrivilege": false,
|
|
"obtainUserPrivilege": false,
|
|
"obtainOtherPrivilege": false,
|
|
"userInteractionRequired": false
|
|
}
|
|
]
|
|
},
|
|
"weaknesses": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"description": [
|
|
{
|
|
"lang": "en",
|
|
"value": "NVD-CWE-Other"
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"configurations": [
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:5.5.8:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "B275581E-40C7-4C60-8579-ABE91C72A4F2"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:6.2.10_gamma:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "D6A80D91-6829-4FD0-A237-0B736133FE3C"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:6.2.11_gamma:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "20E4C682-8357-42A1-B05A-A67BE6491673"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:6.3.0_beta:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "8DC7A15A-CC25-4246-8E20-6DD2835505A7"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:6.4.0_beta:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "0B0BFA73-C127-4F3C-9264-9F7AF662EBF3"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:6.5.0_beta:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "81A94D77-7CFD-45C7-97BC-99CB02461E19"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:6.5.1_beta:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "EA19BEB3-B893-41E9-A136-981F06E85327"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:6.5.2_beta:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "895A15BB-6CD4-436C-AD8F-CD63DF918342"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:6.5.3_beta:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "01E8CFA8-4C68-4569-8B35-13155709453F"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:6.5.4_gamma:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "32CBB373-CEC4-44A0-9AC5-BCBED479E3CB"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:6.5.5_gamma:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "27EB08FC-0D48-4AD8-AD38-3995B01007C9"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:6.5.6_gamma:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "CCFAD6F9-34EF-4C12-AF2C-C8D4F7E31754"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:6.6.0_beta:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "70A7A54C-EB1E-41F7-91B9-F3DA5B3F3D8B"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:6.6.1_beta:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "171B8F2A-4EB0-4A29-8F2E-6B073B1490CC"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:6.6.2_gamma:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "72F897FC-CC83-43A6-8D40-3825FEC517BA"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:6.6.3_gamma:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "AF9CE5C0-DB9A-45CD-8C1C-26C664A79477"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:6.6.4_gamma:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "C519572D-9CB8-40F1-A74D-D0246873DEBC"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:6.6.5:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "BEB72220-4AA2-4C30-B934-BBC0F72869C6"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:6.7.0_beta:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "8E9073E8-E3B5-416C-8D9B-1943F67BDE25"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:6.7.1_beta:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "E99ADD3A-FE1D-4B67-9945-9CBB3D4BEBBE"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:6.7.2_beta:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "C8EDBDCD-6BF0-4213-91D0-501D107DB512"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:6.7.3_gamma:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "3236FC46-7E1E-49A1-8239-B67C03D47B4C"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:6.7.4_gamma:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "8AB7FE74-41AF-4E99-B808-A9349BED0575"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:6.7.5_gamma:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "1D646596-6247-4E58-B84F-7BD87B8B71DB"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:6.7.6_gamma:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "386BF292-8E87-4442-A4CF-A3A105ECBBBD"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:6.7.7_gamma:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "C23D1DB6-6C4F-4C0A-A8EE-CB51E16F89A9"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:6.7.8_gamma:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "282EF8C4-E4D1-42FD-A56F-3FA3AB8EE6A2"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:6.8.1_beta:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "6B79656F-BE0B-403B-8E2B-C384AEDF21C5"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:6.8.2_beta:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "65DEC170-B84D-47B9-8A91-13374B8021FF"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:plain_black:webgui:6.8.3_gamma:*:*:*:*:*:*:*",
|
|
"matchCriteriaId": "382B4D87-4CE1-4E06-A6EC-4725FC209D8E"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"references": [
|
|
{
|
|
"url": "http://sourceforge.net/project/shownotes.php?release_id=384153&group_id=51417",
|
|
"source": "cve@mitre.org",
|
|
"tags": [
|
|
"Patch"
|
|
]
|
|
},
|
|
{
|
|
"url": "http://sourceforge.net/tracker/index.php?func=detail&aid=1395371&group_id=51417&atid=463213",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "http://www.vupen.com/english/advisories/2006/0126",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24053",
|
|
"source": "cve@mitre.org"
|
|
}
|
|
]
|
|
} |