2 matches found
CVE-2006-5447
The vulnerability CVE-2006-5447 affects DEV Web Management System (WMS) version 1.5 as described in PT-2006-6166. It is a cross-site scripting (XSS) flaw in index.php where the action parameter can be exploited to inject arbitrary web script or HTML. The core issue is an XSS exposure in the index...
CVE-2006-0886
The provided sources describe a Cross-site scripting (XSS) vulnerability in DEV web management system 1.5, specifically in register.php, exploitable via the City/Region field (mesto variable). Remote attackers could inject arbitrary web script or HTML. The vulnerability affects the register.php h...