{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-01-02T00:00:00.000Z", "descriptions": [{"lang": "en", "value": "Cross-site scripting (XSS) vulnerability in the DataForm Entries functionality in Plain Black WebGUI before 6.8.4 (gamma) allows remote attackers to inject arbitrary Javascript via the (1) url and (2) name field of the default email form."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-19T15:57:01.000Z", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "18372", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/18372"}, {"tags": ["x_refsource_MISC"], "url": "http://sourceforge.net/tracker/index.php?func=detail&aid=1395371&group_id=51417&atid=463213"}, {"name": "webgui-forms-xss(24053)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24053"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://sourceforge.net/project/shownotes.php?release_id=384153&group_id=51417"}, {"name": "ADV-2006-0126", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/0126"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-0165", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Cross-site scripting (XSS) vulnerability in the DataForm Entries functionality in Plain Black WebGUI before 6.8.4 (gamma) allows remote attackers to inject arbitrary Javascript via the (1) url and (2) name field of the default email form."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "18372", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/18372"}, {"name": "http://sourceforge.net/tracker/index.php?func=detail&aid=1395371&group_id=51417&atid=463213", "refsource": "MISC", "url": "http://sourceforge.net/tracker/index.php?func=detail&aid=1395371&group_id=51417&atid=463213"}, {"name": "webgui-forms-xss(24053)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24053"}, {"name": "http://sourceforge.net/project/shownotes.php?release_id=384153&group_id=51417", "refsource": "CONFIRM", "url": "http://sourceforge.net/project/shownotes.php?release_id=384153&group_id=51417"}, {"name": "ADV-2006-0126", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/0126"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T16:25:34.038Z"}, "title": "CVE Program Container", "references": [{"name": "18372", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/18372"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://sourceforge.net/tracker/index.php?func=detail&aid=1395371&group_id=51417&atid=463213"}, {"name": "webgui-forms-xss(24053)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24053"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://sourceforge.net/project/shownotes.php?release_id=384153&group_id=51417"}, {"name": "ADV-2006-0126", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2006/0126"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-0165", "datePublished": "2006-01-11T21:00:00.000Z", "dateReserved": "2006-01-11T00:00:00.000Z", "dateUpdated": "2024-08-07T16:25:34.038Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:plain_black:webgui:5.5.8:*:*:*:*:*:*:*", "matchCriteriaId": "B275581E-40C7-4C60-8579-ABE91C72A4F2", "vulnerable": true}, {"criteria": "cpe:2.3:a:plain_black:webgui:6.2.10_gamma:*:*:*:*:*:*:*", "matchCriteriaId": "D6A80D91-6829-4FD0-A237-0B736133FE3C", "vulnerable": true}, {"criteria": "cpe:2.3:a:plain_black:webgui:6.2.11_gamma:*:*:*:*:*:*:*", "matchCriteriaId": "20E4C682-8357-42A1-B05A-A67BE6491673", "vulnerable": true}, {"criteria": "cpe:2.3:a:plain_black:webgui:6.3.0_beta:*:*:*:*:*:*:*", "matchCriteriaId": "8DC7A15A-CC25-4246-8E20-6DD2835505A7", "vulnerable": true}, {"criteria": "cpe:2.3:a:plain_black:webgui:6.4.0_beta:*:*:*:*:*:*:*", "matchCriteriaId": "0B0BFA73-C127-4F3C-9264-9F7AF662EBF3", "vulnerable": true}, {"criteria": "cpe:2.3:a:plain_black:webgui:6.5.0_beta:*:*:*:*:*:*:*", "matchCriteriaId": "81A94D77-7CFD-45C7-97BC-99CB02461E19", "vulnerable": true}, {"criteria": "cpe:2.3:a:plain_black:webgui:6.5.1_beta:*:*:*:*:*:*:*", "matchCriteriaId": "EA19BEB3-B893-41E9-A136-981F06E85327", "vulnerable": true}, {"criteria": "cpe:2.3:a:plain_black:webgui:6.5.2_beta:*:*:*:*:*:*:*", "matchCriteriaId": "895A15BB-6CD4-436C-AD8F-CD63DF918342", "vulnerable": true}, {"criteria": "cpe:2.3:a:plain_black:webgui:6.5.3_beta:*:*:*:*:*:*:*", "matchCriteriaId": "01E8CFA8-4C68-4569-8B35-13155709453F", "vulnerable": true}, {"criteria": "cpe:2.3:a:plain_black:webgui:6.5.4_gamma:*:*:*:*:*:*:*", "matchCriteriaId": "32CBB373-CEC4-44A0-9AC5-BCBED479E3CB", "vulnerable": true}, {"criteria": "cpe:2.3:a:plain_black:webgui:6.5.5_gamma:*:*:*:*:*:*:*", "matchCriteriaId": "27EB08FC-0D48-4AD8-AD38-3995B01007C9", "vulnerable": true}, {"criteria": "cpe:2.3:a:plain_black:webgui:6.5.6_gamma:*:*:*:*:*:*:*", "matchCriteriaId": "CCFAD6F9-34EF-4C12-AF2C-C8D4F7E31754", "vulnerable": true}, {"criteria": "cpe:2.3:a:plain_black:webgui:6.6.0_beta:*:*:*:*:*:*:*", "matchCriteriaId": "70A7A54C-EB1E-41F7-91B9-F3DA5B3F3D8B", "vulnerable": true}, {"criteria": "cpe:2.3:a:plain_black:webgui:6.6.1_beta:*:*:*:*:*:*:*", "matchCriteriaId": "171B8F2A-4EB0-4A29-8F2E-6B073B1490CC", "vulnerable": true}, {"criteria": "cpe:2.3:a:plain_black:webgui:6.6.2_gamma:*:*:*:*:*:*:*", "matchCriteriaId": "72F897FC-CC83-43A6-8D40-3825FEC517BA", "vulnerable": true}, {"criteria": "cpe:2.3:a:plain_black:webgui:6.6.3_gamma:*:*:*:*:*:*:*", "matchCriteriaId": "AF9CE5C0-DB9A-45CD-8C1C-26C664A79477", "vulnerable": true}, {"criteria": "cpe:2.3:a:plain_black:webgui:6.6.4_gamma:*:*:*:*:*:*:*", "matchCriteriaId": "C519572D-9CB8-40F1-A74D-D0246873DEBC", "vulnerable": true}, {"criteria": "cpe:2.3:a:plain_black:webgui:6.6.5:*:*:*:*:*:*:*", "matchCriteriaId": "BEB72220-4AA2-4C30-B934-BBC0F72869C6", "vulnerable": true}, {"criteria": "cpe:2.3:a:plain_black:webgui:6.7.0_beta:*:*:*:*:*:*:*", "matchCriteriaId": "8E9073E8-E3B5-416C-8D9B-1943F67BDE25", "vulnerable": true}, {"criteria": "cpe:2.3:a:plain_black:webgui:6.7.1_beta:*:*:*:*:*:*:*", "matchCriteriaId": "E99ADD3A-FE1D-4B67-9945-9CBB3D4BEBBE", "vulnerable": true}, {"criteria": "cpe:2.3:a:plain_black:webgui:6.7.2_beta:*:*:*:*:*:*:*", "matchCriteriaId": "C8EDBDCD-6BF0-4213-91D0-501D107DB512", "vulnerable": true}, {"criteria": "cpe:2.3:a:plain_black:webgui:6.7.3_gamma:*:*:*:*:*:*:*", "matchCriteriaId": "3236FC46-7E1E-49A1-8239-B67C03D47B4C", "vulnerable": true}, {"criteria": "cpe:2.3:a:plain_black:webgui:6.7.4_gamma:*:*:*:*:*:*:*", "matchCriteriaId": "8AB7FE74-41AF-4E99-B808-A9349BED0575", "vulnerable": true}, {"criteria": "cpe:2.3:a:plain_black:webgui:6.7.5_gamma:*:*:*:*:*:*:*", "matchCriteriaId": "1D646596-6247-4E58-B84F-7BD87B8B71DB", "vulnerable": true}, {"criteria": "cpe:2.3:a:plain_black:webgui:6.7.6_gamma:*:*:*:*:*:*:*", "matchCriteriaId": "386BF292-8E87-4442-A4CF-A3A105ECBBBD", "vulnerable": true}, {"criteria": "cpe:2.3:a:plain_black:webgui:6.7.7_gamma:*:*:*:*:*:*:*", "matchCriteriaId": "C23D1DB6-6C4F-4C0A-A8EE-CB51E16F89A9", "vulnerable": true}, {"criteria": "cpe:2.3:a:plain_black:webgui:6.7.8_gamma:*:*:*:*:*:*:*", "matchCriteriaId": "282EF8C4-E4D1-42FD-A56F-3FA3AB8EE6A2", "vulnerable": true}, {"criteria": "cpe:2.3:a:plain_black:webgui:6.8.1_beta:*:*:*:*:*:*:*", "matchCriteriaId": "6B79656F-BE0B-403B-8E2B-C384AEDF21C5", "vulnerable": true}, {"criteria": "cpe:2.3:a:plain_black:webgui:6.8.2_beta:*:*:*:*:*:*:*", "matchCriteriaId": "65DEC170-B84D-47B9-8A91-13374B8021FF", "vulnerable": true}, {"criteria": "cpe:2.3:a:plain_black:webgui:6.8.3_gamma:*:*:*:*:*:*:*", "matchCriteriaId": "382B4D87-4CE1-4E06-A6EC-4725FC209D8E", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Cross-site scripting (XSS) vulnerability in the DataForm Entries functionality in Plain Black WebGUI before 6.8.4 (gamma) allows remote attackers to inject arbitrary Javascript via the (1) url and (2) name field of the default email form."}], "id": "CVE-2006-0165", "lastModified": "2025-04-03T01:03:51.193", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2006-01-11T21:03:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/18372"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://sourceforge.net/project/shownotes.php?release_id=384153&group_id=51417"}, {"source": "cve@mitre.org", "url": "http://sourceforge.net/tracker/index.php?func=detail&aid=1395371&group_id=51417&atid=463213"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2006/0126"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24053"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/18372"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://sourceforge.net/project/shownotes.php?release_id=384153&group_id=51417"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://sourceforge.net/tracker/index.php?func=detail&aid=1395371&group_id=51417&atid=463213"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2006/0126"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24053"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{}