CVE-2006-4883

2006-09-1921:00:00

mitre

www.cve.org

AI Score

5.8

Confidence

High

EPSS

0.006

Percentile

78.9%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in IDevSpot BizDirectory allow remote attackers to inject arbitrary web script or HTML via (1) the stylesheet parameter in Feed.php or (2) the message parameter in status.php.

References

secunia.com/advisories/21911

securityreason.com/securityalert/1611

securitytracker.com/id?1016876

www.securityfocus.com/archive/1/446223/100/0/threaded

www.securityfocus.com/bid/20081

www.vupen.com/english/advisories/2006/3691

exchange.xforce.ibmcloud.com/vulnerabilities/29002