Published: 24/02/2006 Updated: 18/10/2018

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N

Cross-site scripting vulnerability in ratefile.php in RunCMS 1.3a5 allows remote malicious users to inject arbitrary web script or HTML via the lid parameter.

Vulnerable Product	Search on Vulmon	Subscribe to Product
runcms runcms 1.3a
runcms runcms 1.3a2
runcms runcms 1.3a5
runcms runcms 1.1
runcms runcms 1.1a
runcms runcms 1.2

source: wwwsecurityfocuscom/bid/16769/info RunCMS is prone to a cross-site scripting vulnerability This issue is due to a failure in the application to properly sanitize user-supplied input An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user in the context of the affected s ...

NVD-CWE-Other http://kapda.ir/advisory-267.html http://www.securityfocus.com/bid/16769 http://securitytracker.com/id?1015663 http://secunia.com/advisories/18997 http://www.osvdb.org/23388 http://www.vupen.com/english/advisories/2006/0694 https://exchange.xforce.ibmcloud.com/vulnerabilities/24871 http://www.securityfocus.com/archive/1/425775/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/27256/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-0875

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect