Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1331

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2006-1331
Last Modified 05 Sep 2008 05:01:37
Published 20 Mar 2006 08:06:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2006-1331

Summary

Multiple cross-site scripting (XSS) vulnerabilities in index.php in Noah's Classifieds 1.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) method or (2) list parameter.

Vulnerable Systems

Application

  • Phpoutsourcing Noahs Classifieds 1.3


References

MISC - http://zone14.free.fr/advisories/1

BID - 17151

BUGTRAQ - 20060320 Noah's Classifieds Multiple Path Disclosure and Cross Site Scripting Vulnerabilities

XF - noahs-index-path-disclosure(25331)

XF - noahs-index-xss(25099)

FULLDISC - 20060308 Noah's Classifieds Multiple Cross-Site Scripting Vulnerabilities


Last Updated: 27 May 2016 10:42:02