CVE-2006-3071

2006-06-1910:00:00

mitre

www.cve.org

AI Score

5.7

Confidence

High

EPSS

0.006

Percentile

78.3%

JSON

Cross-site scripting (XSS) vulnerability in index.php in MP3 Search/Archive 1.2 allows remote attackers to inject arbitrary web script or HTML via the (1) keywords parameter, as used by the “search box”, and (2) res parameter.

References

secunia.com/advisories/20664

securityreason.com/securityalert/1112

www.osvdb.org/26530

www.securityfocus.com/archive/1/437283/100/0/threaded

www.vupen.com/english/advisories/2006/2385

exchange.xforce.ibmcloud.com/vulnerabilities/27234