CVE-2006-0643

Medium

4.3/10

Summary

Cross-site scripting (XSS) vulnerability in WiredRed e/pop Web Conferencing 4.1.0.755 allows remote authenticated users to inject arbitrary web script or HTML via the topic name of a conference.

Access Complexity: MEDIUM
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: PARTIAL
Confidentiality Impact: NONE
Availability Impact: NONE

References

Advisory Timeline

Published Feb 10, 2006

CVE-2006-0643

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS