Cross-site scripting (XSS) vulnerability in Xtreme ASP Photo Gallery allows remote attackers to inject arbitrary HTML or web script via (1) the catname parameter to displaypic.asp or (2) the search field. NOTE: vector 1 likely overlaps CVE-2006-3032.
References
Configurations
History
21 Nov 2024, 00:23
Type | Values Removed | Values Added |
---|---|---|
References | () http://securityreason.com/securityalert/2148 - | |
References | () http://www.securityfocus.com/archive/1/451786/100/0/threaded - | |
References | () http://www.securityfocus.com/bid/21138 - Exploit | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/30327 - |
Information
Published : 2007-01-17 00:28
Updated : 2024-11-21 00:23
NVD link : CVE-2006-6936
Mitre link : CVE-2006-6936
CVE.ORG link : CVE-2006-6936
JSON object : View
Products Affected
pensacola_web_designs
- xtremeasp_photogallery
CWE