CVE-2006-0361
CVE-2006-0361
Cross-site scripting (XSS) vulnerability in addcomment.php in Bit 5 Blog 8.01 allows remote attackers to inject arbitrary web script or HTML via a javascript URI in an <a> tag in the comment parameter, which strips most tags but not <a>.
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/27085unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://evuln.com/vulns/32/exploithttp://evuln.com/vulns/32/summary/http://secunia.com/advisories/18464https://exchange.xforce.ibmcloud.com/vulnerabilities/24129http://www.osvdb.org/22446http://www.securityfocus.com/archive/1/421994/100/0/threadedhttp://www.securityfocus.com/bid/16246http://www.vupen.com/english/advisories/2006/0195