CVE-2006-0078

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://evuln.com/vulns/10/summary.html", "name": "http://evuln.com/vulns/10/summary.html", "tags": ["Vendor Advisory"], "refsource": "MISC"}, {"url": "http://www.securityfocus.com/bid/16114", "name": "16114", "tags": [], "refsource": "BID"}, {"url": "http://secunia.com/advisories/18271", "name": "18271", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.osvdb.org/22190", "name": "22190", "tags": [], "refsource": "OSVDB"}, {"url": "http://www.osvdb.org/22191", "name": "22191", "tags": [], "refsource": "OSVDB"}, {"url": "http://sourceforge.net/project/shownotes.php?release_id=442067&group_id=117067", "name": "http://sourceforge.net/project/shownotes.php?release_id=442067&group_id=117067", "tags": [], "refsource": "CONFIRM"}, {"url": "http://securityreason.com/securityalert/316", "name": "316", "tags": [], "refsource": "SREASON"}, {"url": "http://www.vupen.com/english/advisories/2006/0018", "name": "ADV-2006-0018", "tags": [], "refsource": "VUPEN"}, {"url": "http://www.securityfocus.com/archive/1/444320/100/0/threaded", "name": "20060825 Re: [eVuln] B-net Software Multiple XSS Vulnerabilities", "tags": [], "refsource": "BUGTRAQ"}, {"url": "http://www.securityfocus.com/archive/1/420673/100/0/threaded", "name": "20060102 [eVuln] B-net Software Multiple XSS Vulnerabilities", "tags": [], "refsource": "BUGTRAQ"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Multiple cross-site scripting (XSS) vulnerabilities in B-net Software 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) name and (2) shout variables to (a) shout.php, or the (3) title and (4) message variables to (b) guestbook.php."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2006-0078", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "severity": "MEDIUM", "impactScore": 2.9, "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2006-01-04T06:03Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:haddad_said:b-net_software:1.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2018-10-19T15:42Z"}