Vulnerabilities > CVE-2006-0703 - Multiple vulnerability in Imagevue 0.16.1
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Unspecified vulnerability in index.php in imageVue 16.1 has unknown impact, probably a cross-site scripting (XSS) vulnerability involving the query string that is not quoted when inserted into style and body tags, as demonstrated using a bgcol parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | ImageVue 0.16.1 index.php bgcol Parameter XSS. CVE-2006-0703. Webapps exploit for php platform |
id | EDB-ID:27199 |
last seen | 2016-02-03 |
modified | 2006-02-11 |
published | 2006-02-11 |
reporter | zjieb |
source | https://www.exploit-db.com/download/27199/ |
title | ImageVue 0.16.1 index.php bgcol Parameter XSS |
References
- http://secunia.com/advisories/18802
- http://securityreason.com/securityalert/429
- http://www.securityfocus.com/archive/1/424745/30/0/threaded
- http://www.securityfocus.com/archive/1/440586/100/100/threaded
- http://www.securityfocus.com/archive/1/450047/100/100/threaded
- http://www.securityfocus.com/bid/16594
- http://www.vupen.com/english/advisories/2006/0570
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24642