1. Home
  2. CVE Database
  3. CVE-2006-0473
MEDIUM · 4.3

CVE-2006-0473

Cross-site scripting (XSS) vulnerability in the bbcode function in weblog.php in my little homepage my little weblog, as last modified in April 2004, allows remote attackers to inject arbitrary Javasc...

Vulnerability Description

Cross-site scripting (XSS) vulnerability in the bbcode function in weblog.php in my little homepage my little weblog, as last modified in April 2004, allows remote attackers to inject arbitrary Javascript via a javascript URI in BBcode link tags.

CVSS Score

4.3

MEDIUM

AV:N/AC:M/Au:N/C:N/I:P/A:N
Confidentiality
NONE
Integrity
PARTIAL
Availability
NONE

Affected Products

VendorProductVersions
My Little HomepageMy Little Weblog2004-04-20

References

FAQ

What is CVE-2006-0473?

CVE-2006-0473 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Cross-site scripting (XSS) vulnerability in the bbcode function in weblog.php in my little homepage my little weblog, as last modified in April 2004, allows remote attackers to inject arbitrary Javasc...

How severe is CVE-2006-0473?

CVE-2006-0473 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2006-0473?

Check the references section above for vendor advisories and patch information. Affected products include: My Little Homepage My Little Weblog.