CVE-2006-2986

2006-06-1301:00:00

mitre

www.cve.org

AI Score

5.8

Confidence

High

EPSS

0.005

Percentile

76.1%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in Baby Katie Media (a) very Simple Car Lister (vSCAL) 1.0 and (b) very simple Realty Lister (vsREAL) 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) lid parameter in index.php and the (2) title parameter in myslideshow.php.

References

secunia.com/advisories/20533

securityreason.com/securityalert/1084

www.securityfocus.com/archive/1/436411/100/0/threaded

www.securityfocus.com/bid/18350

www.vupen.com/english/advisories/2006/2238

exchange.xforce.ibmcloud.com/vulnerabilities/27095