CVE-2006-1397

Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 28/03/2006 Updated: 18/10/2018

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Multiple cross-site scripting (XSS) vulnerabilities in (a) phpAdsNew and (b) phpPgAds prior to 2.0.8 allow remote malicious users to inject arbitrary web script or HTML via the (1) certain parameters to the banner delivery module, which is not properly handled in the administrator interface, or (2) certain parameters to the login form.

Vulnerable Product	Search on Vulmon	Subscribe to Product
phpadsnew phpadsnew 2.0
phpadsnew phpadsnew 2.0.2
phppgads phppgads 2.0.5
phppgads phppgads 2.0.7
phppgads phppgads 2.0.4
phppgads phppgads 2.0.4_pr2
phpadsnew phpadsnew 2.0.7
phpadsnew phpadsnew 2_dev_2001-10-09
phpadsnew phpadsnew 2.0.3
phpadsnew phpadsnew 2.0.4
phpadsnew phpadsnew 2.0.5

NVD-CWE-Other http://phpadsnew.com/two/nucleus/index.php?itemid=46 http://sourceforge.net/project/shownotes.php?release_id=404963 http://sourceforge.net/project/shownotes.php?release_id=404964 http://www.securityfocus.com/bid/17251 http://securitytracker.com/id?1015829 http://securitytracker.com/id?1015828 http://secunia.com/advisories/19384 http://www.osvdb.org/24205 http://www.osvdb.org/24206 http://securityreason.com/securityalert/633 http://www.vupen.com/english/advisories/2006/1107 https://exchange.xforce.ibmcloud.com/vulnerabilities/25458 http://www.securityfocus.com/archive/1/428898/100/0/threaded https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-1397

Vulnerability Summary

References

Vulmon Search

About

Products

Connect