CVE-2006-0204 Information

Feb 14, 2021 cve

Description

Multiple cross-site scripting (XSS) vulnerabilities in Wordcircle 2.17 allow remote attackers to inject arbitrary web script or HTML via (1) the \Course name\ field in index.php when the frm parameter has the value \mine\ and (2) possibly certain other fields in unspecified scripts.

Reference

http://evuln.com/vulns/28/summary.html http://secunia.com/advisories/18440 http://securityreason.com/securityalert/345 http://www.osvdb.org/22359 http://www.securityfocus.com/archive/1/421746/100/0/threaded http://www.securityfocus.com/bid/16227 http://www.vupen.com/english/advisories/2006/0185 https://exchange.xforce.ibmcloud.com/vulnerabilities/24106

Share on: