CVE-2006-1155

CVE-2006-1155

EPSS 1.3%

Cross-site scripting (XSS) vulnerability in manas tungare Site Membership Script before 8 March, 2006 allows remote attackers to inject arbitrary web script or HTML via the Error parameter in (1) login.asp and (2) default.asp.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://secunia.com/advisories/19156 https://exchange.xforce.ibmcloud.com/vulnerabilities/25109 http://www.manastungare.com/projects/site-membership/http://www.osvdb.org/23753 http://www.osvdb.org/23754 http://www.securityfocus.com/bid/17045 http://www.vupen.com/english/advisories/2006/0884