CVE-2006-3246

CVE-2006-3246

EPSS 1.3%

Cross-site scripting (XSS) vulnerability in show.php in GL-SH Deaf Forum 6.4.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the sort parameter.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://pridels0.blogspot.com/2006/06/gl-sh-deaf-forum-xss-vuln.html http://secunia.com/advisories/20781 https://exchange.xforce.ibmcloud.com/vulnerabilities/27363 http://www.osvdb.org/26804 http://www.securityfocus.com/bid/18651 http://www.vupen.com/english/advisories/2006/2515