5 matches found
CVE-2006-2810
Multiple cross-site scripting XSS vulnerabilities in Belchior Foundry vCard 2.9 allow remote attackers to inject arbitrary web script or HTML via the page parameter in 1 toprated.php and 2 newcards.php. NOTE: the cardid vector is already covered by CVE-2006-1230...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Belchior Foundry vCard 2.9 allow remote attackers to inject arbitrary web script or HTML via the page parameter in 1 toprated.php and 2 newcards.php. NOTE: the cardid vector is already covered by CVE-2006-1230...
CVE-2006-2810
Multiple cross-site scripting XSS vulnerabilities in Belchior Foundry vCard 2.9 allow remote attackers to inject arbitrary web script or HTML via the page parameter in 1 toprated.php and 2 newcards.php. NOTE: the cardid vector is already covered by CVE-2006-1230...
CVE-2006-1230
Multiple cross-site scripting XSS vulnerabilities in create.php in vCard 2.x allow remote attackers to inject arbitrary web script or HTML via the 1 cardid, 2 uploaded, 3 cardfontsize, or 4 cardcolor parameter. NOTE: the cardid vector was later reported to affect vCard 2.9, and the uploaded vecto...
CVE-2006-1230
CVE-2006-1230 describes multiple cross-site scripting (XSS) flaws in create.php of vCard 2.x, allowing remote injection of arbitrary script/HTML via (1) card_id, (2) uploaded, (3) card_fontsize, or (4) card_color parameters. The note indicates the card_id vector was later reported to affect vCard...