Vulnerabilities > CVE-2006-0498 - Cross-Site Scripting vulnerability in PHP GEN

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

php-gen

NVD

Published: 2006-02-01

Updated: 2017-07-20

Summary

Multiple cross-site scripting (XSS) vulnerabilities in PHP GEN before 1.4 allow remote attackers to inject arbitrary web script or HTML via unknown attack vectors.

Vulnerable Configurations

Part	Description	Count
Application	Php_Gen PHP GEN PHP GEN 0.5 PHP GEN PHP GEN 0.6 PHP GEN PHP GEN 0.7 PHP GEN PHP GEN 0.8 PHP GEN PHP GEN 1.0 PHP GEN PHP GEN 1.1 PHP GEN PHP GEN 1.2 PHP GEN PHP GEN 1.3	8

References

http://secunia.com/advisories/18715
http://www.eyce.be/php_gen/NEWS
http://www.osvdb.org/22884
http://www.vupen.com/english/advisories/2006/0408
https://exchange.xforce.ibmcloud.com/vulnerabilities/24443