Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1622

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2006-1622
Last Modified 05 Sep 2008 05:02:24
Published 05 Apr 2006 06:04:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2006-1622

Summary

Cross-site scripting (XSS) vulnerability in PHPSelect linksubmit allows remote attackers to inject arbitrary web script or HTML via (1) the description parameter to linklist.php and possibly other vectors involving (2) index.php and (3) linksubmit.php.

Vulnerable Systems

Application

  • Phpselect


References

BUGTRAQ - 20060401 linksubmit <= All version Html Tag Injector in index.php

XF - linksubmit-linksubmit-xss(25607)


Last Updated: 27 May 2016 10:42:09