Multiple cross-site scripting (XSS) vulnerabilities in Xt-News 0.1 allow remote attackers to inject arbitrary web script or HTML via the id_news parameter to (1) add_comment.php or (2) show_news.php.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2006-12-27T00:00:00
Updated: 2024-08-07T20:42:06.745Z
Reserved: 2006-12-26T00:00:00
Link: CVE-2006-6746
Vulnrichment
No data.
NVD
Status : Modified
Published: 2006-12-27T00:28:00.000
Modified: 2018-10-17T21:49:31.083
Link: CVE-2006-6746
Redhat
No data.