Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 08/02/2006 Updated: 20/07/2017

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in PHP-Fusion prior to 6.00.304 allows remote malicious users to inject arbitrary web script or HTML via the (1) shout_name field in shoutbox_panel.php and the (2) comments field in comments_include.php.

Vulnerable Product	Search on Vulmon	Subscribe to Product
php fusion php fusion 6.00.103
php fusion php fusion 6.00.104
php fusion php fusion 6.00.204
php fusion php fusion 6.00.205
php fusion php fusion 6.00.105
php fusion php fusion 6.00.106
php fusion php fusion 6.00.206
php fusion php fusion 6.00.207
php fusion php fusion 6.00.101
php fusion php fusion 6.00.102
php fusion php fusion 6.00.109
php fusion php fusion 6.00.110
php fusion php fusion 6.00.200
php fusion php fusion 6.00.100
php fusion php fusion 6.00.107
php fusion php fusion 6.00.108
php fusion php fusion 6.00.300
php fusion php fusion 6.00.303

NVD-CWE-Other http://www.php-fusion.co.uk/news.php?readmore=307 http://www.php-fusion.co.uk/downloads.php?cat_id=3 http://www.osvdb.org/22980 http://www.osvdb.org/22981 http://secunia.com/advisories/18949 http://www.securityfocus.com/bid/16548 http://www.vupen.com/english/advisories/2006/0463 https://exchange.xforce.ibmcloud.com/vulnerabilities/24548 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-0593

Vulnerability Summary

References

Vulmon Search

About

Products

Connect