Inicial ▼ Bookkeeping
Online ▼ Auditorias ▼
DNS
Administrado ▼
Acerca de DNS
Ordenar/Renovar
Preguntas Frecuentes
AUP
Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password Monitoreo
de Redes ▼
Enterprise
Avanzado
Estándarr
Prueba
Preguntas Frecuentes
Resumen de Precio/Funciones
Ordenar
Muestras
Configure/Status Alert Profiles | |||
ID de CVE: | CVE-2006-0885 |
Descripción: | Cross-site scripting (XSS) vulnerability in show_news.php in CuteNews 1.4.1 allows remote attackers to inject arbitrary web script or HTML via the show parameter. |
Prueba de IDs: | Ninguno disponible |
Referencias Cruzadas: |
Common Vulnerability Exposure (CVE) ID: CVE-2006-0885 BugTraq ID: 16740 http://www.securityfocus.com/bid/16740 Bugtraq: 20060221 [myimei]CuteNews1.4.1~ Add Comment For Protected UserNames~ XSS Attack (Google Search) http://www.securityfocus.com/archive/1/425583 http://myimei.com/security/2006-02-20/cutenews141addcommentforprotectedusernamesxss-attack.html http://www.osvdb.org/23400 http://secunia.com/advisories/18981 http://www.vupen.com/english/advisories/2006/0685 XForce ISS Database: cutenews-shownews-xss(24835) https://exchange.xforce.ibmcloud.com/vulnerabilities/24835 |