My Little Weblog

CVEs (3)

CVE	Risk	CVSS	EPSS	Published	Description
CVE-2006-0473	0.04	—	0.11	Jan 31, 2006	Cross-site scripting (XSS) vulnerability in the bbcode function in weblog.php in my little homepage my little weblog, as last modified in April 2004, allows remote attackers to inject arbitrary Javascript via a javascript URI in BBcode link tags.
CVE-2006-6087	0.03	—	0.04	Nov 24, 2006	Cross-site scripting (XSS) vulnerability in weblog.php in my little weblog allows remote attackers to inject arbitrary web script or HTML via the action parameter.
CVE-2007-2102	0.00	—	0.01	Apr 18, 2007	Cross-site scripting (XSS) vulnerability in weblog.php in my little weblog allows remote attackers to inject arbitrary web script or HTML via the id parameter, a different vector than CVE-2006-6087.

CVE-2006-0473Jan 31, 2006
risk 0.04cvss —epss 0.11
Cross-site scripting (XSS) vulnerability in the bbcode function in weblog.php in my little homepage my little weblog, as last modified in April 2004, allows remote attackers to inject arbitrary Javascript via a javascript URI in BBcode link tags.
CVE-2006-6087Nov 24, 2006
risk 0.03cvss —epss 0.04
Cross-site scripting (XSS) vulnerability in weblog.php in my little weblog allows remote attackers to inject arbitrary web script or HTML via the action parameter.
CVE-2007-2102Apr 18, 2007
risk 0.00cvss —epss 0.01
Cross-site scripting (XSS) vulnerability in weblog.php in my little weblog allows remote attackers to inject arbitrary web script or HTML via the id parameter, a different vector than CVE-2006-6087.