CVE-2006-5530

Multiple cross-site scripting (XSS) vulnerabilities in Boesch SimpNews before 2.34.01 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters to (1) admin/index.php, (2) admin/pwlost.php, and unspecified other files. NOTE: the provenance of this information is unknown; the details are obtained from third party information.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:boesch_it-consulting:simpnews:2.13:*:*:*:*:*:*:*
cpe:2.3:a:boesch_it-consulting:simpnews:2.30:*:*:*:*:*:*:*
cpe:2.3:a:boesch_it-consulting:simpnews:*:*:*:*:*:*:*:*
cpe:2.3:a:boesch_it-consulting:simpnews:2.0.1:*:*:*:*:*:*:*

Information

Published : 2006-10-26 10:07

Updated : 2012-08-05 21:00


NVD link : CVE-2006-5530

Mitre link : CVE-2006-5530


JSON object : View

CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Advertisement

dedicated server usa

Products Affected

boesch_it-consulting

  • simpnews