CVE-2006-6082

Published: 24/11/2006 Updated: 14/02/2024

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 440

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Multiple cross-site scripting (XSS) vulnerabilities in CreaScripts Creadirectory allow remote malicious users to inject arbitrary web script or HTML via the (1) cat parameter to addlisting.asp or the (2) search parameter to search.asp.

Vulnerable Product	Search on Vulmon	Subscribe to Product
creascripts creadirectory 1.2

source: wwwsecurityfocuscom/bid/21230/info Creascripts creadirectory is prone to multiple input-validation vulnerabilities, inculding SQL-injection issues and a cross-site scripting issue, because the application fails to sufficiently sanitize user-supplied data Exploiting these issues could allow an attacker to steal cookie-based a ...

source: wwwsecurityfocuscom/bid/21230/info Creascripts creadirectory is prone to multiple input-validation vulnerabilities, inculding SQL-injection issues and a cross-site scripting issue, because the application fails to sufficiently sanitize user-supplied data Exploiting these issues could allow an attacker to steal cookie-based aut ...

NVD-CWE-Other http://s-a-p.ca/index.php?page=OurAdvisories&id=54 http://www.securityfocus.com/bid/21230 http://secunia.com/advisories/23067 http://securityreason.com/securityalert/1907 http://www.vupen.com/english/advisories/2006/4665 https://exchange.xforce.ibmcloud.com/vulnerabilities/30473 http://www.securityfocus.com/archive/1/452241/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/29156/

CVE-2006-6082

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect