Lucene search
K

4 matches found

NVD
NVD
added 2006/12/11 6:28 p.m.37 views

CVE-2006-6466

Multiple cross-site scripting XSS vulnerabilities in WBmap.php in WikyBlog 1.3.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 key, 2 d, 3 l, or 4 v parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third par...

6.8CVSS5.7AI score0.011EPSS
Exploits0References1
CVE
CVE
added 2006/12/11 6:0 p.m.37 views

CVE-2006-6465

WikyBlog v1.3.2 and earlier exposes a directory traversal risk in WBmap.php via the l parameter. The vulnerability is described as allowing remote inclusion/execution of local files, with the note that the l parameter is validated by ctype_alpha before use, which CVE disputes. Affected software i...

6.5CVSS7.5AI score0.01411EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2006/12/11 6:0 p.m.18 views

CVE-2006-6465

Directory traversal vulnerability in WBmap.php in WikyBlog 1.3.2 and earlier allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the l parameter. NOTE: CVE disputes this vulnerability because l is validated by ctypealpha before use...

7.2AI score0.01411EPSS
Exploits0References3
seebug.org
seebug.org
added 2006/12/05 12:0 a.m.17 views

WikyBlog 1.3.2 (include/WBmap.php) Local File Inclusion Exploit

No description provided by source. r0ut3r Presents... Another r0ut3r discovery! writ3r at gmail.com WikyBlog Local File Inclusion Exploit Software: WikyBlog 1.3 Vendor: http://www.wikyblog.com/ Released: 2006/12/01 Discovered & Exploit By:...

7.1AI score
Exploits0
Rows per page
Query Builder