{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-11-01T00:00:00", "descriptions": [{"lang": "en", "value": "Multiple cross-site scripting (XSS) vulnerabilities in Zend Google Data Client Library (ZendGData) Preview 0.2.0 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters in (1) basedemo.php and (2) calenderdemo.php in samples/, and other unspecified files."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-17T20:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20061101 Multiple XSS Vulnerabilities in Zend Google Data Client Library Preview 0.2.0", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/450245/100/0/threaded"}, {"name": "20851", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/20851"}, {"tags": ["x_refsource_MISC"], "url": "http://www.armorize.com/resources/vulnerability.php?Keyword=Armorize-ADV-2006-0008"}, {"name": "1815", "tags": ["third-party-advisory", "x_refsource_SREASON"], "url": "http://securityreason.com/securityalert/1815"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-5717", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple cross-site scripting (XSS) vulnerabilities in Zend Google Data Client Library (ZendGData) Preview 0.2.0 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters in (1) basedemo.php and (2) calenderdemo.php in samples/, and other unspecified files."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20061101 Multiple XSS Vulnerabilities in Zend Google Data Client Library Preview 0.2.0", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/450245/100/0/threaded"}, {"name": "20851", "refsource": "BID", "url": "http://www.securityfocus.com/bid/20851"}, {"name": "http://www.armorize.com/resources/vulnerability.php?Keyword=Armorize-ADV-2006-0008", "refsource": "MISC", "url": "http://www.armorize.com/resources/vulnerability.php?Keyword=Armorize-ADV-2006-0008"}, {"name": "1815", "refsource": "SREASON", "url": "http://securityreason.com/securityalert/1815"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-5717", "datePublished": "2006-11-04T01:00:00", "dateReserved": "2006-11-03T00:00:00", "dateUpdated": "2018-10-17T20:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:zend:zend_google_data_client_library_preview:0.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "BF531DD2-320E-47A1-9340-9BE4849F7E50", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Multiple cross-site scripting (XSS) vulnerabilities in Zend Google Data Client Library (ZendGData) Preview 0.2.0 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters in (1) basedemo.php and (2) calenderdemo.php in samples/, and other unspecified files."}, {"lang": "es", "value": "Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en Zend Google Data Client Library (ZendGData) Preview 0.2.0 permite a un atacante remoto inyectar secuencias de comandos web o HMTL a trav\u00e9s de par\u00e1metro no especificados en (1)basedemo.php y (2) calenderdemo.php en samples/, y otros ficheros no especificados."}], "id": "CVE-2006-5717", "lastModified": "2018-10-17T21:44:15.300", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2006-11-04T01:07:00.000", "references": [{"source": "cve@mitre.org", "url": "http://securityreason.com/securityalert/1815"}, {"source": "cve@mitre.org", "url": "http://www.armorize.com/resources/vulnerability.php?Keyword=Armorize-ADV-2006-0008"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/450245/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/20851"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}