Vulnerabilities > CVE-2006-1264 - Unspecified vulnerability in Xhawk.Net Discussion 2.0Beta2

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

xhawk-net

NVD

Published: 2006-03-19

Updated: 2018-10-18

Summary

Cross-site scripting (XSS) vulnerability in xhawk.net discussion 2.0 beta2 allows remote attackers to inject arbitrary web script or HTML via a Javascript URI in a BBCode img tag.

Vulnerable Configurations

Part	Description	Count
Application	Xhawk.Net Xhawk.Net Discussion 2.0_Beta2	1

References

http://evuln.com/vulns/92/summary.html
http://www.osvdb.org/23970
http://www.securityfocus.com/archive/1/427729/100/0/threaded
http://www.securityfocus.com/bid/17119
https://exchange.xforce.ibmcloud.com/vulnerabilities/25236