Published: 30/03/2006 Updated: 18/10/2018

CVSS v2 Base Score: 5.1 | Impact Score: 6.4 | Exploitability Score: 4.9

VMScore: 520

Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P

Multiple cross-site scripting (XSS) vulnerabilities in Arab Portal 2.0 (aka Arab Dynamic Portal or ADP) stable allow remote malicious users to inject arbitrary web script or HTML via the title parameter in (1) online.php and (2) download.php.

Vulnerable Product	Search on Vulmon	Subscribe to Product
arab portal arab portal 2.0

source: wwwsecurityfocuscom/bid/17285/info ArabPortal System is prone to a cross-site scripting vulnerability This issue is due to a failure in the application to properly sanitize user-supplied input An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user in the context of t ...

source: wwwsecurityfocuscom/bid/17285/info ArabPortal System is prone to a cross-site scripting vulnerability This issue is due to a failure in the application to properly sanitize user-supplied input An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user in the context of the ...

NVD-CWE-Other http://secunia.com/advisories/19445 http://www.securityfocus.com/bid/17285 http://www.osvdb.org/24220 http://www.osvdb.org/24221 http://securityreason.com/securityalert/673 http://www.vupen.com/english/advisories/2006/1150 https://exchange.xforce.ibmcloud.com/vulnerabilities/25515 http://www.securityfocus.com/archive/1/429109/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/27501/

CVE-2006-1504

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect