CVE-2006-3765

CVE-2006-3765

EPSS 1.3%

Multiple cross-site scripting (XSS) vulnerabilities in Huttenlocher Webdesign hwdeGUEST 2.1.1 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, as demonstrated by the "name input" field in new_entry.php.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://securityreason.com/securityalert/1258 http://securitytracker.com/id?1016549 https://exchange.xforce.ibmcloud.com/vulnerabilities/27805 http://www.securityfocus.com/archive/1/440455/100/0/threaded http://www.securityfocus.com/bid/19053 http://www.vupen.com/english/advisories/2006/2871