Vulnerabilities > CVE-2006-0168 - Input Validation vulnerability in Myphpim 01.05
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE network
myphpim
Summary
Cross-site scripting (XSS) vulnerability in MyPhPim 01.05 allows remote attackers to inject arbitrary web script or HTML via the description field on the "Create New todo" page.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
References
- http://evuln.com/vulns/22/summary.html
- http://secunia.com/advisories/18399
- http://www.osvdb.org/22326
- http://www.securityfocus.com/archive/1/421863/100/0/threaded
- http://www.securityfocus.com/bid/16210
- http://www.vupen.com/english/advisories/2006/0147
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24071