{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-16T01:33:06.027","vulnerabilities":[{"cve":{"id":"CVE-2006-7073","sourceIdentifier":"cve@mitre.org","published":"2007-03-02T21:18:00.000","lastModified":"2026-04-23T00:35:47.467","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-site scripting (XSS) vulnerability in Opentools Attachment Mod before 2.4.5 allows remote attackers to inject arbitrary web script or HTML in Internet Explorer via unknown vectors related to the uploaded attachments form.  NOTE: some details were obtained from third party information."},{"lang":"es","value":"Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en Opentools Attachment Mod anterior a 2.4.5 permite a atacantes remotos inyectar secuencias de comandos web o HTML de su elección en Internet Explorer a través de vectores desconocidos relacionados con el formulario de adjuntos enviados. NOTA: algunos de estos detalles se han obtenido de información de terceros."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:opentools:attachment_mod:2.4.0a:*:*:*:*:*:*:*","matchCriteriaId":"11626342-0F2E-4909-8623-56BDF4755637"},{"vulnerable":true,"criteria":"cpe:2.3:a:opentools:attachment_mod:2.4.1:*:*:*:*:*:*:*","matchCriteriaId":"7446952D-EF5C-4E68-8A62-D7D6334F8648"},{"vulnerable":true,"criteria":"cpe:2.3:a:opentools:attachment_mod:2.4.2:*:*:*:*:*:*:*","matchCriteriaId":"05A58A33-112B-4D8D-A786-521B33BBA5F2"},{"vulnerable":true,"criteria":"cpe:2.3:a:opentools:attachment_mod:2.4.3:*:*:*:*:*:*:*","matchCriteriaId":"4109CCEB-4D3E-4564-8EB2-9748FB5BCD95"},{"vulnerable":true,"criteria":"cpe:2.3:a:opentools:attachment_mod:2.4.4:*:*:*:*:*:*:*","matchCriteriaId":"C0A39274-AFDA-4464-88E1-8AB6F4BBECDD"}]}]}],"references":[{"url":"http://secunia.com/advisories/21787","source":"cve@mitre.org","tags":["Patch","Vendor Advisory"]},{"url":"http://sourceforge.net/project/shownotes.php?group_id=66311&release_id=445469","source":"cve@mitre.org","tags":["Patch"]},{"url":"http://www.securityfocus.com/bid/19888","source":"cve@mitre.org"},{"url":"http://www.vupen.com/english/advisories/2006/3499","source":"cve@mitre.org"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/28788","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/21787","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"http://sourceforge.net/project/shownotes.php?group_id=66311&release_id=445469","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"]},{"url":"http://www.securityfocus.com/bid/19888","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.vupen.com/english/advisories/2006/3499","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/28788","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}