CVE-2006-3405 Information

Feb 14, 2021 cve

Description

Cross-site scripting (XSS) vulnerability in qtofm.php in QTOFileManager 1.0 allows remote attackers to inject arbitrary web script or HTML via the (1) delete (2) pathext and (3) edit parameters.

Reference

http://securityreason.com/securityalert/1199 http://securitytracker.com/id?1016427 http://www.securityfocus.com/archive/1/438960/100/0/threaded http://www.securityfocus.com/bid/18791

Share on: