{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-05-09T00:00:00", "descriptions": [{"lang": "en", "value": "Multiple cross-site scripting (XSS) vulnerabilities in Taskjitsu before 2.0.1 allow remote attackers to inject arbitrary web script or HTML via multiple unspecified parameters, including the (1) title and (2) description parameters when creating a task."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-19T15:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "taskjitsu-task-xss(27533)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27533"}, {"name": "20912", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/20912"}, {"tags": ["x_refsource_MISC"], "url": "https://www.pkrinternet.com/taskjitsu/task/3313"}, {"name": "18818", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/18818"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.pkrinternet.com/download/RELEASE-NOTES.txt"}, {"name": "ADV-2006-2660", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/2660"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-3397", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple cross-site scripting (XSS) vulnerabilities in Taskjitsu before 2.0.1 allow remote attackers to inject arbitrary web script or HTML via multiple unspecified parameters, including the (1) title and (2) description parameters when creating a task."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "taskjitsu-task-xss(27533)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27533"}, {"name": "20912", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/20912"}, {"name": "https://www.pkrinternet.com/taskjitsu/task/3313", "refsource": "MISC", "url": "https://www.pkrinternet.com/taskjitsu/task/3313"}, {"name": "18818", "refsource": "BID", "url": "http://www.securityfocus.com/bid/18818"}, {"name": "http://www.pkrinternet.com/download/RELEASE-NOTES.txt", "refsource": "CONFIRM", "url": "http://www.pkrinternet.com/download/RELEASE-NOTES.txt"}, {"name": "ADV-2006-2660", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/2660"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T18:30:32.816Z"}, "title": "CVE Program Container", "references": [{"name": "taskjitsu-task-xss(27533)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27533"}, {"name": "20912", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/20912"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://www.pkrinternet.com/taskjitsu/task/3313"}, {"name": "18818", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/18818"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.pkrinternet.com/download/RELEASE-NOTES.txt"}, {"name": "ADV-2006-2660", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2006/2660"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-3397", "datePublished": "2006-07-06T20:00:00", "dateReserved": "2006-07-06T00:00:00", "dateUpdated": "2024-08-07T18:30:32.816Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:pkr_internet:taskjitsu:0.1:*:*:*:*:*:*:*", "matchCriteriaId": "D9546620-3256-4D85-A144-789A12C5F89D", "vulnerable": true}, {"criteria": "cpe:2.3:a:pkr_internet:taskjitsu:2.0:*:*:*:*:*:*:*", "matchCriteriaId": "A03C9348-DD01-4CB3-A5E4-153A8AFA7024", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Multiple cross-site scripting (XSS) vulnerabilities in Taskjitsu before 2.0.1 allow remote attackers to inject arbitrary web script or HTML via multiple unspecified parameters, including the (1) title and (2) description parameters when creating a task."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades de ejecuci\u00f3n de secuencias de comandos en sitios cruzados (XSS) en Taskjitsu anterior a v2.0.1 permite a atacantes remotos inyectar inyectar secuencias de comandos web y HTML de su elecci\u00f3n a trav\u00e9s de m\u00faltiples par\u00e1metros sin especificar, incluyendo (1) el t\u00edtulo y (2)la descripci\u00f3n de par\u00e1metros cuando se crea una tarea."}], "id": "CVE-2006-3397", "lastModified": "2024-02-14T01:17:43.863", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2006-07-06T20:05:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/20912"}, {"source": "cve@mitre.org", "tags": ["URL Repurposed"], "url": "http://www.pkrinternet.com/download/RELEASE-NOTES.txt"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.securityfocus.com/bid/18818"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2006/2660"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27533"}, {"source": "cve@mitre.org", "tags": ["URL Repurposed"], "url": "https://www.pkrinternet.com/taskjitsu/task/3313"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}