3 matches found
CVE-2006-6466
Multiple cross-site scripting XSS vulnerabilities in WBmap.php in WikyBlog 1.3.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 key, 2 d, 3 l, or 4 v parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third par...
CVE-2006-6466
CVE-2006-6466 affects WikyBlog 1.3.2 and earlier, due to cross-site scripting in WBmap.php allowing remote injection of arbitrary script/HTML via the (1) key, (2) d, (3) l, or (4) v parameters. The l vector is disputed since it is validated by ctype_alpha before use. This entry’s exploitation sta...
CVE-2006-6466
Multiple cross-site scripting XSS vulnerabilities in WBmap.php in WikyBlog 1.3.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 key, 2 d, 3 l, or 4 v parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third par...