CVE-2006-2533 Information

Feb 14, 2021 cve

Description

Cross-site scripting (XSS) vulnerability in (1) addWeblog.php and (2) leaveComments.php in Destiney Rated Images Script 0.5.0 does not properly filter all vulnerable HTML tags which allows remote attackers to inject arbitrary web script or HTML via Javascript in a DIV tag.

Reference

http://secunia.com/advisories/20249 http://securityreason.com/securityalert/940 http://www.securityfocus.com/archive/1/434691/100/0/threaded http://www.securityfocus.com/archive/1/435093/100/0/threaded http://www.securityfocus.com/bid/18070 http://www.vupen.com/english/advisories/2006/1927 https://exchange.xforce.ibmcloud.com/vulnerabilities/26605

Share on: