← back
CVE-2006-1612

CVE-2006-1612

EPSS 2.3%
Multiple cross-site scripting (XSS) vulnerabilities in visview.php in aWebNews 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) yname, (2) emailadd, (3) subject, and (4) comment parameters.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://evuln.com/vulns/116/summary.htmlhttp://secunia.com/advisories/19487http://securityreason.com/securityalert/707https://exchange.xforce.ibmcloud.com/vulnerabilities/25589http://www.osvdb.org/24333http://www.securityfocus.com/archive/1/431007/100/0/threadedhttp://www.vupen.com/english/advisories/2006/1196