CVE-2006-1946 Information

Feb 14, 2021 cve

Description

Multiple cross-site scripting (XSS) vulnerabilities in Visale 1.0 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the keyval parameter in pbpgst.cgi (2) the catsubno parameter in pblscg.cgi and (3) the listno parameter in pblsmb.cgi.

Reference

http://pridels0.blogspot.com/2006/04/visale-xss-vuln.html http://secunia.com/advisories/19655 http://www.osvdb.org/24716 http://www.osvdb.org/24717 http://www.osvdb.org/24718 http://www.securityfocus.com/bid/17598 http://www.vupen.com/english/advisories/2006/1408 https://exchange.xforce.ibmcloud.com/vulnerabilities/25928

Share on: