Vulnerabilities > CVE-2006-1202 - Unspecified vulnerability in Jcink.Com Textfilebb 1.0
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN jcink-com
exploit available
Summary
Multiple cross-site scripting (XSS) vulnerabilities in textfileBB 1.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) mess and (2) user parameters in messanger.php, possibly requiring a URL encoded value.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | TextfileBB 1.0 Multiple Cross-Site Scripting Vulnerabilities. CVE-2006-1202 . Webapps exploit for php platform |
id | EDB-ID:27373 |
last seen | 2016-02-03 |
modified | 2006-03-08 |
published | 2006-03-08 |
reporter | Retard |
source | https://www.exploit-db.com/download/27373/ |
title | TextfileBB 1.0 - Multiple Cross-Site Scripting Vulnerabilities |
References
- http://notlegal.ws/textfilebbmessanger.txt
- http://secunia.com/advisories/19149
- http://securitytracker.com/id?1015744
- http://www.securityfocus.com/bid/17029
- http://www.vupen.com/english/advisories/2006/0897
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25091
- http://www.securityfocus.com/archive/1/427081/100/0/threaded