CVE-2006-3514 Information

Feb 14, 2021 cve

Description

Multiple cross-site scripting (XSS) vulnerabilities in admin/actions.php in PHP-Blogger 2.2.5 and possibly earlier versions allow remote attackers to execute arbitrary web script or HTML via the (1) name (2) title (3) news (4) description and (5) sitename parameters.

Reference

http://secunia.com/advisories/20989 http://securityreason.com/securityalert/1202 http://www.securityfocus.com/archive/1/439440/100/0/threaded http://www.securityfocus.com/bid/18909 http://www.vupen.com/english/advisories/2006/2710 https://exchange.xforce.ibmcloud.com/vulnerabilities/27630

Share on: