2 matches found
CVE-2006-1752
The CVE-2006-1752 entry describes multiple XSS vulnerabilities in the MvBlog backend prior to version 1.6. The issue allows remote attackers to inject arbitrary web script or HTML through the comment fields (name or body). The sources do not provide concrete exploit vectors, in-the-wild exploitat...
CVE-2006-1752
Multiple cross-site scripting XSS vulnerabilities in the backend in MvBlog before 1.6 allow remote attackers to inject arbitrary web script or HTML via the 1 name or 2 body fields in a comment...