Vulnerabilities

CVE-2006-0860

by Fred · 23/02/2006

Multiple cross-site scripting (XSS) vulnerabilities in Michael Salzer Guestbox 0.6, and other versions before 0.8, allow remote attackers to inject arbitrary web script or HTML via (1) HTML tags that follow a "http://" string, which bypasses a regular expression check, and (2) other unspecified attack vectors.

Date published : 2006-02-23

http://www.securityfocus.com/bid/16751

http://www.securityfocus.com/archive/1/425495/100/0/threaded

Similar

Tags: Cybersecurity Alert