CVE-2006-1808

EPSS 1.9%

Cross-site scripting (XSS) vulnerability in index.php in Lifetype 1.0.3 allows remote attackers to inject arbitrary web script or HTML via the show parameter in a Template operation.

Affected products

n/a · n/a

public PoCs found — 1

exploitdbwww.exploit-db.com/exploits/27646unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://secunia.com/advisories/19646 http://securitytracker.com/id?1015941 https://exchange.xforce.ibmcloud.com/vulnerabilities/25899 http://www.securityfocus.com/archive/1/431008/100/0/threaded http://www.securityfocus.com/bid/17529 http://www.vupen.com/english/advisories/2006/1367