CVE-2006-1406

2006-03-2811:00:00

mitre

www.cve.org

AI Score

5.8

Confidence

High

EPSS

0.004

Percentile

74.1%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in wbadmlog.aspx in uniForum 4.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) txtuser or (2) txtpassword parameters.

References

pridels0.blogspot.com/2006/03/uniforum-xss-vuln.html

secunia.com/advisories/19397

www.osvdb.org/24123

www.securityfocus.com/bid/17245

www.vupen.com/english/advisories/2006/1101

exchange.xforce.ibmcloud.com/vulnerabilities/25433