Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.8
CVSSv2

CVE-2006-6929

Published: 13/01/2007 Updated: 14/02/2024
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
VMScore: 700
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Subscribe to Rapid Classified

Vulnerability Summary

Multiple cross-site scripting (XSS) vulnerabilities in Rapid Classified 3.1 allow remote malicious users to inject arbitrary web script or HTML via the (1) id parameter to (a) reply.asp or (b) view_print.asp, the (2) SH1 parameter to (c) search.asp, the (3) name parameter to reply.asp, or the (4) dosearch parameter to (d) advsearch.asp.

Vulnerable Product Search on Vulmon Subscribe to Product

ga soft rapid classified 3.1

Exploits

Exploit DB: Rapid Classified 3.1 - 'view_print.asp' Cross-Site Scripting
source: wwwsecurityfocuscom/bid/21197/info Rapid Classified is prone to multiple input-validation issues, including multiple cross-site scripting issues and an SQL-injection issue, because the application fails to properly sanitize user-supplied input A successful exploit of these vulnerabilities could allow an attacker to compromise ...
Exploit DB: Rapid Classified 3.1 - 'search.asp' Cross-Site Scripting
source: wwwsecurityfocuscom/bid/21197/info Rapid Classified is prone to multiple input-validation issues, including multiple cross-site scripting issues and an SQL-injection issue, because the application fails to properly sanitize user-supplied input A successful exploit of these vulnerabilities could allow an attacker to compromis ...
Exploit DB: Rapid Classified 3.1 - 'reply.asp' Cross-Site Scripting
source: wwwsecurityfocuscom/bid/21197/info Rapid Classified is prone to multiple input-validation issues, including multiple cross-site scripting issues and an SQL-injection issue, because the application fails to properly sanitize user-supplied input A successful exploit of these vulnerabilities could allow an attacker to comprom ...
Exploit DB: Rapid Classified 3.1 - 'advsearch.asp' Cross-Site Scripting
source: wwwsecurityfocuscom/bid/21197/info Rapid Classified is prone to multiple input-validation issues, including multiple cross-site scripting issues and an SQL-injection issue, because the application fails to properly sanitize user-supplied input A successful exploit of these vulnerabilities could allow an attacker to compr ...

References

NVD-CWE-Otherhttp://s-a-p.ca/index.php?page=OurAdvisories&id=44http://www.securityfocus.com/bid/21197http://secunia.com/advisories/22985http://securityreason.com/securityalert/2142http://www.vupen.com/english/advisories/2006/4632https://exchange.xforce.ibmcloud.com/vulnerabilities/30450http://www.securityfocus.com/archive/1/452088/100/0/threadedhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/29134/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
race conditionCVE-2024-4249CVE-2024-4244CVE-2023-20198TCPCVE-2022-48648CVE-2022-48636CVE-2024-21345SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook