4 matches found
CVE-2006-6359
Cross-site scripting XSS vulnerability in Stefan Frech online-bookmarks 0.6.12 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2006-6358
SQL injection vulnerability in the login function in auth.inc in Stefan Frech online-bookmarks 0.6.12 allows remote attackers to execute arbitrary SQL commands via the 1 username and possibly the 2 password parameter. NOTE: some of these details are obtained from third party information...
CVE-2006-6359
Cross-site scripting XSS vulnerability in Stefan Frech online-bookmarks 0.6.12 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2006-6359
CVE-2006-6359 is an XSS vulnerability in Stefan Frech’s online-bookmarks 0.6.12 that allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Public sources (NVD) assign a Medium severity (CVSS v2: AV:N/AC:M/Au:N/C:P/I:P/A:P, base 6.8). Gentoo GLSA 200901-08 lists t...