CVE-2006-1434

CVE-2006-1434

EPSS 1.3%

Cross-site scripting (XSS) vulnerability in inscription.php in Annuaire (Directory) 1.0 allows remote attackers to inject arbitrary web script or HTML via the Comment Field (COMMENTAIRE parameter).

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://osvdb.org/ref/24/24302-annuaire_directory.txt http://secunia.com/advisories/19548 https://exchange.xforce.ibmcloud.com/vulnerabilities/25669 http://www.osvdb.org/24303 http://www.securityfocus.com/bid/17393