Vulnerability Details : CVE-2006-0172
Cross-site scripting (XSS) vulnerability in the file manager utility in Hummingbird Collaboration (aka Hummingbird Enterprise Collaboration) 5.21 and earlier allows remote attackers to inject arbitrary web script or HTML in an uploaded page, which is published without a check for hostile scripting.
Vulnerability category: Cross site scripting (XSS)
Products affected by CVE-2006-0172
- cpe:2.3:a:hummingbird:enterprise_collaboration:*:*:*:*:*:*:*:*
- cpe:2.3:a:hummingbird:enterprise_collaboration:5.2:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2006-0172
0.51%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 73 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2006-0172
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
3.5
|
LOW | AV:N/AC:M/Au:S/C:N/I:P/A:N |
6.8
|
2.9
|
NIST |
References for CVE-2006-0172
Jump to