5 matches found
EUVD-2006-2805
Malware in sbrugna...
Cross site scripting
Cross-site scripting XSS vulnerability in Lycos Tripod htmlGEAR guestGEAR aka Guest Gear allows remote attackers to inject arbitrary web script or HTML via a guestbook post containing a javascript URI in the SRC attribute of the BR element after an extra "iframe" tagname within that element,...
CVE-2006-2808
Cross-site scripting XSS vulnerability in Lycos Tripod htmlGEAR guestGEAR aka Guest Gear allows remote attackers to inject arbitrary web script or HTML via a guestbook post containing a javascript URI in the SRC attribute of the BR element after an extra "iframe" tagname within that element,...
CVE-2006-2808
Cross-site scripting XSS vulnerability in Lycos Tripod htmlGEAR guestGEAR aka Guest Gear allows remote attackers to inject arbitrary web script or HTML via a guestbook post containing a javascript URI in the SRC attribute of the BR element after an extra "iframe" tagname within that element,...
CVE-2006-2808
CVE-2006-2808 is a cross-site scripting vulnerability in Lycos Tripod htmlGEAR guestGEAR (Guest Gear). An attacker can inject arbitrary script via a guestbook post containing a javascript URI in the SRC attribute of a BR element after an extra "iframe" tagname and a double ">", potentially byp...