Published: 12/07/2006 Updated: 18/10/2018

CVSS v2 Base Score: 5.8 | Impact Score: 4.9 | Exploitability Score: 8.6

VMScore: 585

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:N

Multiple cross-site scripting (XSS) vulnerabilities in Pivot 1.30 RC2 and previous versions, when register_globals is enabled, allow remote malicious users to inject arbitrary web script or HTML via the (1) fg, (2) line1, (3) line2, (4) bg, (5) c1, (6) c2, (7) c3, and (8) c4 parameters in (a) includes/blogroll.php; (9) name and (10) js_name parameters in (b) includes/editor/edit_menu.php; and, even if register_globals is not enabled, the (11) h and (12) w parameters in (c) includes/photo.php.

Vulnerable Product	Search on Vulmon	Subscribe to Product
pivot pivot 1.30_rc2

#!/usr/bin/php -q -d short_open_tag=on <? echo "Pivot <= 130 RC2 privileges escalation / remote commands execution exploit\n"; echo "by rgod rgod@autisticiorg\n"; echo "site: retrogodaltervistaorg\n"; echo "dorks: \"Powered byPivot\"\n"; echo "version specific: \"Powered byPivot - 130 RC2\" +Rippersnapper\n\n"; /* works with regis ...

NVD-CWE-Other http://retrogod.altervista.org/pivot_130RC2_xpl.html http://www.securityfocus.com/bid/18881 http://secunia.com/advisories/20962 http://www.osvdb.org/27127 http://www.osvdb.org/27128 http://www.osvdb.org/27129 http://securityreason.com/securityalert/1214 http://www.vupen.com/english/advisories/2006/2744 https://exchange.xforce.ibmcloud.com/vulnerabilities/27672 http://www.securityfocus.com/archive/1/439495/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/1991/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-3533

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect