Vulnerabilities > CVE-2006-1295 - Cross-Site Scripting vulnerability in Spip 1.8.2E/1.8.2G
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE network
spip
Summary
Cross-site scripting (XSS) vulnerability in recherche.php3 in SPIP 1.8.2-g allows remote attackers to inject arbitrary web script or HTML via the recherche parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |