← volver
CVE-2006-1406

CVE-2006-1406

EPSS 1.3%
Multiple cross-site scripting (XSS) vulnerabilities in wbadmlog.aspx in uniForum 4.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) txtuser or (2) txtpassword parameters.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://pridels0.blogspot.com/2006/03/uniforum-xss-vuln.htmlhttp://secunia.com/advisories/19397https://exchange.xforce.ibmcloud.com/vulnerabilities/25433http://www.osvdb.org/24123http://www.securityfocus.com/bid/17245http://www.vupen.com/english/advisories/2006/1101