CVE-2006-6734

2006-12-2623:00:00

mitre

www.cve.org

5.6 Medium

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

78.6%

JSON

Cross-site scripting (XSS) vulnerability in modules/viewcategory.php in Minh Nguyen Duong Obie Website Mini Web Shop 2.1.c allows remote attackers to inject arbitrary web script or HTML via the catname parameter.

References

secunia.com/advisories/23449

securityreason.com/securityalert/2072

www.attrition.org/pipermail/vim/2006-December/001197.html

www.securityfocus.com/archive/1/454864/100/0/threaded

www.securityfocus.com/bid/21677

www.vupen.com/english/advisories/2006/5096