Show plain JSON{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-03-01T00:00:00", "descriptions": [{"lang": "en", "value": "Cross-site scripting (XSS) vulnerability in vBulletin 3.0.12 and 3.5.3 allows remote attackers to inject arbitrary web script or HTML via the email field, which is injected in profile.php but not sanitized in sendmsg.php."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-18T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "19100", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/19100"}, {"name": "ADV-2006-0808", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/0808"}, {"name": "20060302 vBulletin3.0.12&3.5.3~is_valid_email()~XSS Attack", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/426589/100/0/threaded"}, {"name": "20060301 [KAPDA::#26]vBulletin.3.5.3~3.0.12-XSS", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/426537/100/0/threaded"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.vbulletin.com/forum/showthread.php?postid=1079030"}, {"tags": ["x_refsource_MISC"], "url": "http://www.kapda.ir/advisory-266.html"}, {"name": "16919", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/16919"}, {"name": "23614", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/23614"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-1040", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Cross-site scripting (XSS) vulnerability in vBulletin 3.0.12 and 3.5.3 allows remote attackers to inject arbitrary web script or HTML via the email field, which is injected in profile.php but not sanitized in sendmsg.php."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "19100", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/19100"}, {"name": "ADV-2006-0808", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/0808"}, {"name": "20060302 vBulletin3.0.12&3.5.3~is_valid_email()~XSS Attack", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/426589/100/0/threaded"}, {"name": "20060301 [KAPDA::#26]vBulletin.3.5.3~3.0.12-XSS", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/426537/100/0/threaded"}, {"name": "http://www.vbulletin.com/forum/showthread.php?postid=1079030", "refsource": "CONFIRM", "url": "http://www.vbulletin.com/forum/showthread.php?postid=1079030"}, {"name": "http://www.kapda.ir/advisory-266.html", "refsource": "MISC", "url": "http://www.kapda.ir/advisory-266.html"}, {"name": "16919", "refsource": "BID", "url": "http://www.securityfocus.com/bid/16919"}, {"name": "23614", "refsource": "OSVDB", "url": "http://www.osvdb.org/23614"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T16:56:15.173Z"}, "title": "CVE Program Container", "references": [{"name": "19100", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/19100"}, {"name": "ADV-2006-0808", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2006/0808"}, {"name": "20060302 vBulletin3.0.12&3.5.3~is_valid_email()~XSS Attack", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/426589/100/0/threaded"}, {"name": "20060301 [KAPDA::#26]vBulletin.3.5.3~3.0.12-XSS", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/426537/100/0/threaded"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.vbulletin.com/forum/showthread.php?postid=1079030"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.kapda.ir/advisory-266.html"}, {"name": "16919", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/16919"}, {"name": "23614", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/23614"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-1040", "datePublished": "2006-03-07T11:00:00", "dateReserved": "2006-03-07T00:00:00", "dateUpdated": "2024-08-07T16:56:15.173Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"} 
MITRE
Vulnrichment
NVD
Redhat