CVE-2006-3259
e107 0.7.5 - 'search.php' Cross-Site Scripting
Severity Score
4.3
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
4
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Multiple cross-site scripting (XSS) vulnerabilities in e107 0.7.5 allow remote attackers to inject arbitrary web script or HTML via the (1) ep parameter to search.php and the (2) subject parameter in comment.php (aka the Subject field when posting a comment).
Múltiples vulnerabilidades de ejecución de secuencias de comandos en sitios cruzados (XSS) en e107 v0.7.5, permiten a atacantes remotos inyectar secuencias de comandos Web o HTML de su elección a través de (1) el parámetro ep en search.php y (2) el parámetro subject de comment.php (también conocido como el campo Subject cuando se añade un comentario).
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2006-06-19 First Exploit
- 2006-06-27 CVE Reserved
- 2006-06-27 CVE Published
- 2023-08-23 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
CAPEC
References (10)
| URL | Tag | Source |
|---|---|---|
| http://securityreason.com/securityalert/1151 | Third Party Advisory | |
| http://www.securityfocus.com/archive/1/437649/100/0/threaded | Mailing List | |
| http://www.securityfocus.com/bid/18508 | Vdb Entry | |
| http://www.vupen.com/english/advisories/2006/2460 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/27240 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/27242 | Vdb Entry |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/28063 | 2006-06-19 | |
| https://www.exploit-db.com/exploits/28078 | 2006-06-21 | |
| http://secunia.com/advisories/20727 | 2024-08-07 | |
| http://www.securityfocus.com/bid/18560 | 2024-08-07 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | <= 0.7.5 Search vendor "E107" for product "E107" and version " <= 0.7.5" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.6_10 Search vendor "E107" for product "E107" and version "0.6_10" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.6_11 Search vendor "E107" for product "E107" and version "0.6_11" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.6_12 Search vendor "E107" for product "E107" and version "0.6_12" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.6_13 Search vendor "E107" for product "E107" and version "0.6_13" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.6_14 Search vendor "E107" for product "E107" and version "0.6_14" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.6_15 Search vendor "E107" for product "E107" and version "0.6_15" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.6_15a Search vendor "E107" for product "E107" and version "0.6_15a" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.7 Search vendor "E107" for product "E107" and version "0.7" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.7.1 Search vendor "E107" for product "E107" and version "0.7.1" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.7.2 Search vendor "E107" for product "E107" and version "0.7.2" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.7.3 Search vendor "E107" for product "E107" and version "0.7.3" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.7.4 Search vendor "E107" for product "E107" and version "0.7.4" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.545 Search vendor "E107" for product "E107" and version "0.545" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.547_beta Search vendor "E107" for product "E107" and version "0.547_beta" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.548_beta Search vendor "E107" for product "E107" and version "0.548_beta" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.549_beta Search vendor "E107" for product "E107" and version "0.549_beta" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.551_beta Search vendor "E107" for product "E107" and version "0.551_beta" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.552_beta Search vendor "E107" for product "E107" and version "0.552_beta" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.553_beta Search vendor "E107" for product "E107" and version "0.553_beta" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.554 Search vendor "E107" for product "E107" and version "0.554" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.554_beta Search vendor "E107" for product "E107" and version "0.554_beta" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.555_beta Search vendor "E107" for product "E107" and version "0.555_beta" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.600 Search vendor "E107" for product "E107" and version "0.600" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.601 Search vendor "E107" for product "E107" and version "0.601" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.602 Search vendor "E107" for product "E107" and version "0.602" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.603 Search vendor "E107" for product "E107" and version "0.603" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.604 Search vendor "E107" for product "E107" and version "0.604" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.605 Search vendor "E107" for product "E107" and version "0.605" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.606 Search vendor "E107" for product "E107" and version "0.606" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.607 Search vendor "E107" for product "E107" and version "0.607" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.608 Search vendor "E107" for product "E107" and version "0.608" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.609 Search vendor "E107" for product "E107" and version "0.609" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.610 Search vendor "E107" for product "E107" and version "0.610" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.611 Search vendor "E107" for product "E107" and version "0.611" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.612 Search vendor "E107" for product "E107" and version "0.612" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.613 Search vendor "E107" for product "E107" and version "0.613" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.614 Search vendor "E107" for product "E107" and version "0.614" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.615 Search vendor "E107" for product "E107" and version "0.615" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.615a Search vendor "E107" for product "E107" and version "0.615a" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.616 Search vendor "E107" for product "E107" and version "0.616" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.617 Search vendor "E107" for product "E107" and version "0.617" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.6171 Search vendor "E107" for product "E107" and version "0.6171" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.6172 Search vendor "E107" for product "E107" and version "0.6172" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.6173 Search vendor "E107" for product "E107" and version "0.6173" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.6174 Search vendor "E107" for product "E107" and version "0.6174" | - |
Affected
| ||||||
| E107 Search vendor "E107" | E107 Search vendor "E107" for product "E107" | 0.6175 Search vendor "E107" for product "E107" and version "0.6175" | - |
Affected
| ||||||