Intelligence Center » Browse All Vulnerabilities » CVE-2006-3397
Overview |
|
| Vulnerability Score |  4.3 |
| CVE Id | CVE-2006-3397 |
| Last Modified | 07 Mar 2011 09:38:32 |
| Published | 06 Jul 2006 04:05:00 |
| Confidentiality Impact |  NONE |
| Integrity Impact | PARTIAL |
| Availability Impact | NONE |
| Access Vector | NETWORK |
| Access Complexity | MEDIUM |
| Authentication | NONE |
CVE-2006-3397
Summary
Multiple cross-site scripting (XSS) vulnerabilities in Taskjitsu before 2.0.1 allow remote attackers to inject arbitrary web script or HTML via multiple unspecified parameters, including the (1) title and (2) description parameters when creating a task.
Vulnerable Systems
Application
Pkr Internet Taskjitsu 0.1
Pkr Internet Taskjitsu 2.0
References
BID - 18818
SECUNIA - 20912
MISC - https://www.pkrinternet.com/taskjitsu/task/3313
XF - taskjitsu-task-xss(27533)
VUPEN - ADV-2006-2660
CONFIRM - http://www.pkrinternet.com/download/RELEASE-NOTES.txt
IT Risk Posture:
Free Risk Assessment Tools
Application Scanner
Find vulnerabilities on your network.
Device Scanner
Find vulnerabilities on your network.
Patch Scanner
Find vulnerabilities on your network.
Last Updated: 27 May 2016 10:42:58
