Search criteria
9 vulnerabilities found for pubcookie by university_of_washington
FKIE_CVE-2006-1393
Vulnerability from fkie_nvd - Published: 2006-03-26 23:06 - Updated: 2025-04-03 01:03
Severity ?
Summary
Multiple cross-site scripting (XSS) vulnerabilities in the mod_pubcookie Apache application server module in University of Washington Pubcookie 1.x, 3.0.0, 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified attack vectors.
References
| URL | Tags | ||
|---|---|---|---|
| cve@mitre.org | http://pubcookie.org/news/20060306-apps-secadv.html | Patch, Vendor Advisory | |
| cve@mitre.org | http://secunia.com/advisories/19348 | Patch, Vendor Advisory | |
| cve@mitre.org | http://www.kb.cert.org/vuls/id/314540 | Patch, Third Party Advisory, US Government Resource | |
| cve@mitre.org | http://www.osvdb.org/24103 | ||
| cve@mitre.org | http://www.securityfocus.com/bid/17221 | ||
| cve@mitre.org | https://exchange.xforce.ibmcloud.com/vulnerabilities/25426 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://pubcookie.org/news/20060306-apps-secadv.html | Patch, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/19348 | Patch, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.kb.cert.org/vuls/id/314540 | Patch, Third Party Advisory, US Government Resource | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.osvdb.org/24103 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/17221 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://exchange.xforce.ibmcloud.com/vulnerabilities/25426 |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| university_of_washington | pubcookie | 3.0.0 | |
| university_of_washington | pubcookie | 3.1.0 | |
| university_of_washington | pubcookie | 3.1.1 | |
| university_of_washington | pubcookie | 3.2.0 | |
| university_of_washington | pubcookie | 3.2.1 | |
| university_of_washington | pubcookie | 3.2.1a | |
| university_of_washington | pubcookie | 3.3.0 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:university_of_washington:pubcookie:3.0.0:*:*:*:*:*:*:*",
"matchCriteriaId": "32433F8A-8ECA-43E7-B73A-4AE115D3C6CD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:university_of_washington:pubcookie:3.1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "8B5B4A6F-3CF2-43D0-8E32-79017E1DDB8F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:university_of_washington:pubcookie:3.1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "C20FF0B0-61B9-4D61-9FA1-013D0867F7BB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:university_of_washington:pubcookie:3.2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "7C7C9244-4AEA-4C70-BF96-9D8CD125339F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:university_of_washington:pubcookie:3.2.1:*:*:*:*:*:*:*",
"matchCriteriaId": "A2AFBDFF-11FB-4EE9-BCD2-9281AE33DE0C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:university_of_washington:pubcookie:3.2.1a:*:*:*:*:*:*:*",
"matchCriteriaId": "B8AF8CDA-1EF6-4B7B-8D75-3F5F8CE78113",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:university_of_washington:pubcookie:3.3.0:*:*:*:*:*:*:*",
"matchCriteriaId": "6318AC28-703C-4154-9485-861B9E930310",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Multiple cross-site scripting (XSS) vulnerabilities in the mod_pubcookie Apache application server module in University of Washington Pubcookie 1.x, 3.0.0, 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified attack vectors."
}
],
"id": "CVE-2006-1393",
"lastModified": "2025-04-03T01:03:51.193",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2006-03-26T23:06:00.000",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://pubcookie.org/news/20060306-apps-secadv.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/19348"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Third Party Advisory",
"US Government Resource"
],
"url": "http://www.kb.cert.org/vuls/id/314540"
},
{
"source": "cve@mitre.org",
"url": "http://www.osvdb.org/24103"
},
{
"source": "cve@mitre.org",
"url": "http://www.securityfocus.com/bid/17221"
},
{
"source": "cve@mitre.org",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25426"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://pubcookie.org/news/20060306-apps-secadv.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/19348"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Third Party Advisory",
"US Government Resource"
],
"url": "http://www.kb.cert.org/vuls/id/314540"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.osvdb.org/24103"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/17221"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25426"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
FKIE_CVE-2006-1394
Vulnerability from fkie_nvd - Published: 2006-03-26 23:06 - Updated: 2025-04-03 01:03
Severity ?
Summary
Multiple cross-site scripting (XSS) vulnerabilities in the Microsoft IIS ISAPI filter (aka application server module) in University of Washington Pubcookie 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified attack vectors.
References
| URL | Tags | ||
|---|---|---|---|
| cve@mitre.org | http://pubcookie.org/news/20060306-apps-secadv.html | Patch, Vendor Advisory | |
| cve@mitre.org | http://secunia.com/advisories/19348 | ||
| cve@mitre.org | http://www.kb.cert.org/vuls/id/314540 | Patch, Third Party Advisory, US Government Resource | |
| cve@mitre.org | http://www.osvdb.org/24520 | ||
| cve@mitre.org | http://www.securityfocus.com/bid/17221 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://pubcookie.org/news/20060306-apps-secadv.html | Patch, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/19348 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.kb.cert.org/vuls/id/314540 | Patch, Third Party Advisory, US Government Resource | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.osvdb.org/24520 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/17221 |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| university_of_washington | pubcookie | 3.0.0 | |
| university_of_washington | pubcookie | 3.1.0 | |
| university_of_washington | pubcookie | 3.1.1 | |
| university_of_washington | pubcookie | 3.2.0 | |
| university_of_washington | pubcookie | 3.2.1 | |
| university_of_washington | pubcookie | 3.2.1a | |
| university_of_washington | pubcookie | 3.3.0 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:university_of_washington:pubcookie:3.0.0:*:*:*:*:*:*:*",
"matchCriteriaId": "32433F8A-8ECA-43E7-B73A-4AE115D3C6CD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:university_of_washington:pubcookie:3.1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "8B5B4A6F-3CF2-43D0-8E32-79017E1DDB8F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:university_of_washington:pubcookie:3.1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "C20FF0B0-61B9-4D61-9FA1-013D0867F7BB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:university_of_washington:pubcookie:3.2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "7C7C9244-4AEA-4C70-BF96-9D8CD125339F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:university_of_washington:pubcookie:3.2.1:*:*:*:*:*:*:*",
"matchCriteriaId": "A2AFBDFF-11FB-4EE9-BCD2-9281AE33DE0C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:university_of_washington:pubcookie:3.2.1a:*:*:*:*:*:*:*",
"matchCriteriaId": "B8AF8CDA-1EF6-4B7B-8D75-3F5F8CE78113",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:university_of_washington:pubcookie:3.3.0:*:*:*:*:*:*:*",
"matchCriteriaId": "6318AC28-703C-4154-9485-861B9E930310",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Multiple cross-site scripting (XSS) vulnerabilities in the Microsoft IIS ISAPI filter (aka application server module) in University of Washington Pubcookie 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified attack vectors."
}
],
"id": "CVE-2006-1394",
"lastModified": "2025-04-03T01:03:51.193",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2006-03-26T23:06:00.000",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://pubcookie.org/news/20060306-apps-secadv.html"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/19348"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Third Party Advisory",
"US Government Resource"
],
"url": "http://www.kb.cert.org/vuls/id/314540"
},
{
"source": "cve@mitre.org",
"url": "http://www.osvdb.org/24520"
},
{
"source": "cve@mitre.org",
"url": "http://www.securityfocus.com/bid/17221"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://pubcookie.org/news/20060306-apps-secadv.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/19348"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Third Party Advisory",
"US Government Resource"
],
"url": "http://www.kb.cert.org/vuls/id/314540"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.osvdb.org/24520"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/17221"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
FKIE_CVE-2006-1392
Vulnerability from fkie_nvd - Published: 2006-03-26 23:06 - Updated: 2025-04-03 01:03
Severity ?
Summary
Multiple cross-site scripting (XSS) vulnerabilities in index.cgi in the login server in University of Washington Pubcookie 3.0.0, 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified inputs.
References
| URL | Tags | ||
|---|---|---|---|
| cve@mitre.org | http://pubcookie.org/news/20060306-login-secadv.html | Patch, Vendor Advisory | |
| cve@mitre.org | http://secunia.com/advisories/19348 | Patch, Vendor Advisory | |
| cve@mitre.org | http://www.kb.cert.org/vuls/id/337585 | Patch, Third Party Advisory, US Government Resource | |
| cve@mitre.org | http://www.osvdb.org/24521 | ||
| cve@mitre.org | http://www.securityfocus.com/bid/17221 | ||
| cve@mitre.org | https://exchange.xforce.ibmcloud.com/vulnerabilities/25427 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://pubcookie.org/news/20060306-login-secadv.html | Patch, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/19348 | Patch, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.kb.cert.org/vuls/id/337585 | Patch, Third Party Advisory, US Government Resource | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.osvdb.org/24521 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/17221 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://exchange.xforce.ibmcloud.com/vulnerabilities/25427 |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| university_of_washington | pubcookie | 3.0.0 | |
| university_of_washington | pubcookie | 3.1.0 | |
| university_of_washington | pubcookie | 3.1.1 | |
| university_of_washington | pubcookie | 3.2.0 | |
| university_of_washington | pubcookie | 3.2.1 | |
| university_of_washington | pubcookie | 3.2.1a | |
| university_of_washington | pubcookie | 3.3.0 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:university_of_washington:pubcookie:3.0.0:*:*:*:*:*:*:*",
"matchCriteriaId": "32433F8A-8ECA-43E7-B73A-4AE115D3C6CD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:university_of_washington:pubcookie:3.1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "8B5B4A6F-3CF2-43D0-8E32-79017E1DDB8F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:university_of_washington:pubcookie:3.1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "C20FF0B0-61B9-4D61-9FA1-013D0867F7BB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:university_of_washington:pubcookie:3.2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "7C7C9244-4AEA-4C70-BF96-9D8CD125339F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:university_of_washington:pubcookie:3.2.1:*:*:*:*:*:*:*",
"matchCriteriaId": "A2AFBDFF-11FB-4EE9-BCD2-9281AE33DE0C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:university_of_washington:pubcookie:3.2.1a:*:*:*:*:*:*:*",
"matchCriteriaId": "B8AF8CDA-1EF6-4B7B-8D75-3F5F8CE78113",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:university_of_washington:pubcookie:3.3.0:*:*:*:*:*:*:*",
"matchCriteriaId": "6318AC28-703C-4154-9485-861B9E930310",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Multiple cross-site scripting (XSS) vulnerabilities in index.cgi in the login server in University of Washington Pubcookie 3.0.0, 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified inputs."
}
],
"id": "CVE-2006-1392",
"lastModified": "2025-04-03T01:03:51.193",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
]
},
"published": "2006-03-26T23:06:00.000",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://pubcookie.org/news/20060306-login-secadv.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/19348"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Third Party Advisory",
"US Government Resource"
],
"url": "http://www.kb.cert.org/vuls/id/337585"
},
{
"source": "cve@mitre.org",
"url": "http://www.osvdb.org/24521"
},
{
"source": "cve@mitre.org",
"url": "http://www.securityfocus.com/bid/17221"
},
{
"source": "cve@mitre.org",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25427"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://pubcookie.org/news/20060306-login-secadv.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/19348"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Third Party Advisory",
"US Government Resource"
],
"url": "http://www.kb.cert.org/vuls/id/337585"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.osvdb.org/24521"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/17221"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25427"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
CVE-2006-1392 (GCVE-0-2006-1392)
Vulnerability from cvelistv5 – Published: 2006-03-26 23:00 – Updated: 2024-08-07 17:12
VLAI?
Summary
Multiple cross-site scripting (XSS) vulnerabilities in index.cgi in the login server in University of Washington Pubcookie 3.0.0, 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified inputs.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T17:12:21.290Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "pubcookie-login-server-xss(25427)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25427"
},
{
"name": "24521",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://www.osvdb.org/24521"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://pubcookie.org/news/20060306-login-secadv.html"
},
{
"name": "VU#337585",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN",
"x_transferred"
],
"url": "http://www.kb.cert.org/vuls/id/337585"
},
{
"name": "17221",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/17221"
},
{
"name": "19348",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/19348"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2006-03-23T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Multiple cross-site scripting (XSS) vulnerabilities in index.cgi in the login server in University of Washington Pubcookie 3.0.0, 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified inputs."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-07-19T15:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "pubcookie-login-server-xss(25427)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25427"
},
{
"name": "24521",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://www.osvdb.org/24521"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://pubcookie.org/news/20060306-login-secadv.html"
},
{
"name": "VU#337585",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN"
],
"url": "http://www.kb.cert.org/vuls/id/337585"
},
{
"name": "17221",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/17221"
},
{
"name": "19348",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/19348"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2006-1392",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Multiple cross-site scripting (XSS) vulnerabilities in index.cgi in the login server in University of Washington Pubcookie 3.0.0, 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified inputs."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "pubcookie-login-server-xss(25427)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25427"
},
{
"name": "24521",
"refsource": "OSVDB",
"url": "http://www.osvdb.org/24521"
},
{
"name": "http://pubcookie.org/news/20060306-login-secadv.html",
"refsource": "CONFIRM",
"url": "http://pubcookie.org/news/20060306-login-secadv.html"
},
{
"name": "VU#337585",
"refsource": "CERT-VN",
"url": "http://www.kb.cert.org/vuls/id/337585"
},
{
"name": "17221",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/17221"
},
{
"name": "19348",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/19348"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2006-1392",
"datePublished": "2006-03-26T23:00:00",
"dateReserved": "2006-03-26T00:00:00",
"dateUpdated": "2024-08-07T17:12:21.290Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2006-1394 (GCVE-0-2006-1394)
Vulnerability from cvelistv5 – Published: 2006-03-26 23:00 – Updated: 2024-08-07 17:12
VLAI?
Summary
Multiple cross-site scripting (XSS) vulnerabilities in the Microsoft IIS ISAPI filter (aka application server module) in University of Washington Pubcookie 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified attack vectors.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T17:12:20.922Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://pubcookie.org/news/20060306-apps-secadv.html"
},
{
"name": "24520",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://www.osvdb.org/24520"
},
{
"name": "17221",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/17221"
},
{
"name": "VU#314540",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN",
"x_transferred"
],
"url": "http://www.kb.cert.org/vuls/id/314540"
},
{
"name": "19348",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/19348"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2006-03-06T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Multiple cross-site scripting (XSS) vulnerabilities in the Microsoft IIS ISAPI filter (aka application server module) in University of Washington Pubcookie 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified attack vectors."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2006-04-04T09:00:00",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://pubcookie.org/news/20060306-apps-secadv.html"
},
{
"name": "24520",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://www.osvdb.org/24520"
},
{
"name": "17221",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/17221"
},
{
"name": "VU#314540",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN"
],
"url": "http://www.kb.cert.org/vuls/id/314540"
},
{
"name": "19348",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/19348"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2006-1394",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Multiple cross-site scripting (XSS) vulnerabilities in the Microsoft IIS ISAPI filter (aka application server module) in University of Washington Pubcookie 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified attack vectors."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://pubcookie.org/news/20060306-apps-secadv.html",
"refsource": "CONFIRM",
"url": "http://pubcookie.org/news/20060306-apps-secadv.html"
},
{
"name": "24520",
"refsource": "OSVDB",
"url": "http://www.osvdb.org/24520"
},
{
"name": "17221",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/17221"
},
{
"name": "VU#314540",
"refsource": "CERT-VN",
"url": "http://www.kb.cert.org/vuls/id/314540"
},
{
"name": "19348",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/19348"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2006-1394",
"datePublished": "2006-03-26T23:00:00",
"dateReserved": "2006-03-26T00:00:00",
"dateUpdated": "2024-08-07T17:12:20.922Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2006-1393 (GCVE-0-2006-1393)
Vulnerability from cvelistv5 – Published: 2006-03-26 23:00 – Updated: 2024-08-07 17:12
VLAI?
Summary
Multiple cross-site scripting (XSS) vulnerabilities in the mod_pubcookie Apache application server module in University of Washington Pubcookie 1.x, 3.0.0, 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified attack vectors.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T17:12:21.404Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://pubcookie.org/news/20060306-apps-secadv.html"
},
{
"name": "pubcookie-appserver-module-xss(25426)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25426"
},
{
"name": "24103",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://www.osvdb.org/24103"
},
{
"name": "17221",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/17221"
},
{
"name": "VU#314540",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN",
"x_transferred"
],
"url": "http://www.kb.cert.org/vuls/id/314540"
},
{
"name": "19348",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/19348"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2006-03-23T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Multiple cross-site scripting (XSS) vulnerabilities in the mod_pubcookie Apache application server module in University of Washington Pubcookie 1.x, 3.0.0, 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified attack vectors."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-07-19T15:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://pubcookie.org/news/20060306-apps-secadv.html"
},
{
"name": "pubcookie-appserver-module-xss(25426)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25426"
},
{
"name": "24103",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://www.osvdb.org/24103"
},
{
"name": "17221",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/17221"
},
{
"name": "VU#314540",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN"
],
"url": "http://www.kb.cert.org/vuls/id/314540"
},
{
"name": "19348",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/19348"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2006-1393",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Multiple cross-site scripting (XSS) vulnerabilities in the mod_pubcookie Apache application server module in University of Washington Pubcookie 1.x, 3.0.0, 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified attack vectors."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://pubcookie.org/news/20060306-apps-secadv.html",
"refsource": "CONFIRM",
"url": "http://pubcookie.org/news/20060306-apps-secadv.html"
},
{
"name": "pubcookie-appserver-module-xss(25426)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25426"
},
{
"name": "24103",
"refsource": "OSVDB",
"url": "http://www.osvdb.org/24103"
},
{
"name": "17221",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/17221"
},
{
"name": "VU#314540",
"refsource": "CERT-VN",
"url": "http://www.kb.cert.org/vuls/id/314540"
},
{
"name": "19348",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/19348"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2006-1393",
"datePublished": "2006-03-26T23:00:00",
"dateReserved": "2006-03-26T00:00:00",
"dateUpdated": "2024-08-07T17:12:21.404Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2006-1392 (GCVE-0-2006-1392)
Vulnerability from nvd – Published: 2006-03-26 23:00 – Updated: 2024-08-07 17:12
VLAI?
Summary
Multiple cross-site scripting (XSS) vulnerabilities in index.cgi in the login server in University of Washington Pubcookie 3.0.0, 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified inputs.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T17:12:21.290Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "pubcookie-login-server-xss(25427)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25427"
},
{
"name": "24521",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://www.osvdb.org/24521"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://pubcookie.org/news/20060306-login-secadv.html"
},
{
"name": "VU#337585",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN",
"x_transferred"
],
"url": "http://www.kb.cert.org/vuls/id/337585"
},
{
"name": "17221",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/17221"
},
{
"name": "19348",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/19348"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2006-03-23T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Multiple cross-site scripting (XSS) vulnerabilities in index.cgi in the login server in University of Washington Pubcookie 3.0.0, 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified inputs."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-07-19T15:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "pubcookie-login-server-xss(25427)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25427"
},
{
"name": "24521",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://www.osvdb.org/24521"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://pubcookie.org/news/20060306-login-secadv.html"
},
{
"name": "VU#337585",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN"
],
"url": "http://www.kb.cert.org/vuls/id/337585"
},
{
"name": "17221",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/17221"
},
{
"name": "19348",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/19348"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2006-1392",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Multiple cross-site scripting (XSS) vulnerabilities in index.cgi in the login server in University of Washington Pubcookie 3.0.0, 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified inputs."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "pubcookie-login-server-xss(25427)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25427"
},
{
"name": "24521",
"refsource": "OSVDB",
"url": "http://www.osvdb.org/24521"
},
{
"name": "http://pubcookie.org/news/20060306-login-secadv.html",
"refsource": "CONFIRM",
"url": "http://pubcookie.org/news/20060306-login-secadv.html"
},
{
"name": "VU#337585",
"refsource": "CERT-VN",
"url": "http://www.kb.cert.org/vuls/id/337585"
},
{
"name": "17221",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/17221"
},
{
"name": "19348",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/19348"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2006-1392",
"datePublished": "2006-03-26T23:00:00",
"dateReserved": "2006-03-26T00:00:00",
"dateUpdated": "2024-08-07T17:12:21.290Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2006-1394 (GCVE-0-2006-1394)
Vulnerability from nvd – Published: 2006-03-26 23:00 – Updated: 2024-08-07 17:12
VLAI?
Summary
Multiple cross-site scripting (XSS) vulnerabilities in the Microsoft IIS ISAPI filter (aka application server module) in University of Washington Pubcookie 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified attack vectors.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | ||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T17:12:20.922Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://pubcookie.org/news/20060306-apps-secadv.html"
},
{
"name": "24520",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://www.osvdb.org/24520"
},
{
"name": "17221",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/17221"
},
{
"name": "VU#314540",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN",
"x_transferred"
],
"url": "http://www.kb.cert.org/vuls/id/314540"
},
{
"name": "19348",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/19348"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2006-03-06T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Multiple cross-site scripting (XSS) vulnerabilities in the Microsoft IIS ISAPI filter (aka application server module) in University of Washington Pubcookie 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified attack vectors."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2006-04-04T09:00:00",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://pubcookie.org/news/20060306-apps-secadv.html"
},
{
"name": "24520",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://www.osvdb.org/24520"
},
{
"name": "17221",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/17221"
},
{
"name": "VU#314540",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN"
],
"url": "http://www.kb.cert.org/vuls/id/314540"
},
{
"name": "19348",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/19348"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2006-1394",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Multiple cross-site scripting (XSS) vulnerabilities in the Microsoft IIS ISAPI filter (aka application server module) in University of Washington Pubcookie 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified attack vectors."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://pubcookie.org/news/20060306-apps-secadv.html",
"refsource": "CONFIRM",
"url": "http://pubcookie.org/news/20060306-apps-secadv.html"
},
{
"name": "24520",
"refsource": "OSVDB",
"url": "http://www.osvdb.org/24520"
},
{
"name": "17221",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/17221"
},
{
"name": "VU#314540",
"refsource": "CERT-VN",
"url": "http://www.kb.cert.org/vuls/id/314540"
},
{
"name": "19348",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/19348"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2006-1394",
"datePublished": "2006-03-26T23:00:00",
"dateReserved": "2006-03-26T00:00:00",
"dateUpdated": "2024-08-07T17:12:20.922Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2006-1393 (GCVE-0-2006-1393)
Vulnerability from nvd – Published: 2006-03-26 23:00 – Updated: 2024-08-07 17:12
VLAI?
Summary
Multiple cross-site scripting (XSS) vulnerabilities in the mod_pubcookie Apache application server module in University of Washington Pubcookie 1.x, 3.0.0, 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified attack vectors.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T17:12:21.404Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://pubcookie.org/news/20060306-apps-secadv.html"
},
{
"name": "pubcookie-appserver-module-xss(25426)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25426"
},
{
"name": "24103",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://www.osvdb.org/24103"
},
{
"name": "17221",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/17221"
},
{
"name": "VU#314540",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN",
"x_transferred"
],
"url": "http://www.kb.cert.org/vuls/id/314540"
},
{
"name": "19348",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/19348"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2006-03-23T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Multiple cross-site scripting (XSS) vulnerabilities in the mod_pubcookie Apache application server module in University of Washington Pubcookie 1.x, 3.0.0, 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified attack vectors."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-07-19T15:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://pubcookie.org/news/20060306-apps-secadv.html"
},
{
"name": "pubcookie-appserver-module-xss(25426)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25426"
},
{
"name": "24103",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://www.osvdb.org/24103"
},
{
"name": "17221",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/17221"
},
{
"name": "VU#314540",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN"
],
"url": "http://www.kb.cert.org/vuls/id/314540"
},
{
"name": "19348",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/19348"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2006-1393",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Multiple cross-site scripting (XSS) vulnerabilities in the mod_pubcookie Apache application server module in University of Washington Pubcookie 1.x, 3.0.0, 3.1.0, 3.1.1, 3.2 before 3.2.1b, and 3.3 before 3.3.0a allow remote attackers to inject arbitrary web script or HTML via unspecified attack vectors."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://pubcookie.org/news/20060306-apps-secadv.html",
"refsource": "CONFIRM",
"url": "http://pubcookie.org/news/20060306-apps-secadv.html"
},
{
"name": "pubcookie-appserver-module-xss(25426)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25426"
},
{
"name": "24103",
"refsource": "OSVDB",
"url": "http://www.osvdb.org/24103"
},
{
"name": "17221",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/17221"
},
{
"name": "VU#314540",
"refsource": "CERT-VN",
"url": "http://www.kb.cert.org/vuls/id/314540"
},
{
"name": "19348",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/19348"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2006-1393",
"datePublished": "2006-03-26T23:00:00",
"dateReserved": "2006-03-26T00:00:00",
"dateUpdated": "2024-08-07T17:12:21.404Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}