Multiple cross-site scripting (XSS) vulnerabilities in Ringlink 3.2 allow remote attackers to inject arbitrary web script or HTML via a JavaScript URI in the SRC attribute of an IMG element, and possibly other manipulations, in the ringid parameter in (1) next.cgi, (2) stats.cgi, or (3) list.cgi.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2006-06-13T01:00:00
Updated: 2024-08-07T18:16:04.400Z
Reserved: 2006-06-12T00:00:00
Link: CVE-2006-2991
Vulnrichment
No data.
NVD
Status : Modified
Published: 2006-06-13T01:02:00.000
Modified: 2024-11-21T00:12:34.093
Link: CVE-2006-2991
Redhat
No data.