Vulnerabilities > CVE-2006-4797 - Cross-Site Scripting vulnerability in CJ Design CJ TAG Board 3.0

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

cj-design

NVD

Published: 2006-09-14

Updated: 2018-10-17

Summary

Cross-site scripting (XSS) vulnerability in tag.php in CloudNine Interactive CJ Tag Board 3.0 allows remote attackers to inject arbitrary web script or HTML via a JavaScript event in a url BBcode tag in the cjmsg parameter.

Vulnerable Configurations

Part	Description	Count
Application	Cj_Design CJ Design CJ TAG Board 3.0	1

References

http://evuln.com/vulns/137/summary.html
http://securityreason.com/securityalert/1580
http://www.securityfocus.com/archive/1/445913/100/0/threaded
http://www.securityfocus.com/bid/20000
https://exchange.xforce.ibmcloud.com/vulnerabilities/28501