Language:
https://seclists.org/bugtraq/2006/May/150
https://seclists.org/bugtraq/2006/May/440
https://seclists.org/bugtraq/2006/Jul/423
http://www.apache.org/dist/httpd/CHANGES_2.2
http://www.apache.org/dist/httpd/CHANGES_2.0
http://www.apache.org/dist/httpd/CHANGES_1.3
Severity: Medium
ID: 22254
File Name: www_expect_xss.nasl
Version: 1.32
Type: remote
Family: CGI abuses : XSS
Published: 8/23/2006
Updated: 1/19/2021
Configuration: Enable paranoid mode
Supported Sensors: Nessus
Risk Factor: Low
Score: 3.8
Risk Factor: Medium
Base Score: 4.3
Temporal Score: 3.7
Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N
CVSS Score Source: CVE-2006-3918
Risk Factor: Medium
Base Score: 4.3
Temporal Score: 4.1
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Temporal Vector: CVSS:3.0/E:H/RL:O/RC:C
Required KB Items: Settings/ParanoidReport
Exploit Ease: No exploit is required
Exploited by Nessus: true
Vulnerability Publication Date: 5/8/2006
CVE: CVE-2006-3918, CVE-2007-5944
CWE: 79