Vulnerabilities > CVE-2006-2234 - Cross-Site Scripting vulnerability in Tyrocms Beta1.0
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL network
tyrocms
Summary
Multiple cross-site scripting (XSS) vulnerabilities in TyroCMS beta 1.0 allow remote attackers to inject arbitrary web script or HTML via (1) a javascript URI in an img BBCode tag, or a JavaScript event in a (2) url BBCode tag or (3) color BBCode tag.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |