CVE-2006-6936

Cross-site scripting (XSS) vulnerability in Xtreme ASP Photo Gallery allows remote attackers to inject arbitrary HTML or web script via (1) the catname parameter to displaypic.asp or (2) the search field. NOTE: vector 1 likely overlaps CVE-2006-3032.
Configurations

Configuration 1 (hide)

cpe:2.3:a:pensacola_web_designs:xtremeasp_photogallery:2.0:*:*:*:*:*:*:*

History

21 Nov 2024, 00:23

Type Values Removed Values Added
References () http://securityreason.com/securityalert/2148 - () http://securityreason.com/securityalert/2148 -
References () http://www.securityfocus.com/archive/1/451786/100/0/threaded - () http://www.securityfocus.com/archive/1/451786/100/0/threaded -
References () http://www.securityfocus.com/bid/21138 - Exploit () http://www.securityfocus.com/bid/21138 - Exploit
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/30327 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/30327 -

Information

Published : 2007-01-17 00:28

Updated : 2024-11-21 00:23


NVD link : CVE-2006-6936

Mitre link : CVE-2006-6936

CVE.ORG link : CVE-2006-6936


JSON object : View

Products Affected

pensacola_web_designs

  • xtremeasp_photogallery