Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3680

Overview

Vulnerability Score 2.6 2.6
CVE Id CVE-2006-3680
Last Modified 25 Jul 2013 11:10:37
Published 21 Jul 2006 10:03:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2006-3680

Summary

Cross-site scripting (XSS) vulnerability in photocycle in Photocycle 1.0 allows remote attackers to inject arbitrary web script or HTML via the phpage parameter.

Vulnerable Systems

Application

  • Photocycle 1.0


References

BUGTRAQ - 20060714 Re: Photocycle v1.0 - XSS

OSVDB - 27093

SECUNIA - 21054

VUPEN - ADV-2006-2805

BUGTRAQ - 20060713 Photocycle v1.0 - XSS

SECTRACK - 1016492

XF - photocycle-unspecified-xss(27715)

BID - 18964


Last Updated: 27 May 2016 10:43:06