Vulnerabilities > CVE-2006-0877 - Unspecified vulnerability in Easy Forum Easy Forum 2.5
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN easy-forum
exploit available
Summary
Cross-site scripting vulnerability in Easy Forum 2.5 allows remote attackers to inject arbitrary web script or HTML via the image variable.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Easy Forum 2.5 New User Image File HTML Injection Vulnerability. CVE-2006-0877. Webapps exploit for php platform |
| id | EDB-ID:27354 |
| last seen | 2016-02-03 |
| modified | 2006-03-04 |
| published | 2006-03-04 |
| reporter | Aliaksandr Hartsuyeu |
| source | https://www.exploit-db.com/download/27354/ |
| title | Easy Forum 2.5 New User Image File HTML Injection Vulnerability |
Packetstorm
| data source | https://packetstormsecurity.com/files/download/44414/EV0085.txt |
| id | PACKETSTORM:44414 |
| last seen | 2016-12-05 |
| published | 2006-03-08 |
| reporter | Aliaksandr Hartsuyeu |
| source | https://packetstormsecurity.com/files/44414/EV0085.txt.html |
| title | EV0085.txt |
References
- http://evuln.com/vulns/85/summary.html
- http://evuln.com/vulns/85/summary.html
- http://hot-things.net/forum/show.php?f=2&topic=20060224080919
- http://hot-things.net/forum/show.php?f=2&topic=20060224080919
- http://secunia.com/advisories/18996
- http://secunia.com/advisories/18996
- http://www.osvdb.org/23430
- http://www.osvdb.org/23430
- http://www.securityfocus.com/archive/1/426760/100/0/threaded
- http://www.securityfocus.com/archive/1/426760/100/0/threaded
- http://www.securityfocus.com/bid/16958
- http://www.securityfocus.com/bid/16958
- http://www.vupen.com/english/advisories/2006/0706
- http://www.vupen.com/english/advisories/2006/0706
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24831
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24831