Vulnerabilities > CVE-2006-1321 - HTML Injection vulnerability in Webcheck Username
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE network
webcheck
Summary
Cross-site scripting (XSS) vulnerability in webcheck before 1.9.6 allows remote attackers to inject arbitrary web script or HTML via the (1) url, (2) title, or (3) author name in a crawled page, which is not properly sanitized in the tooltips of a report. Versions before 1.0 are named "linbot" instead of "webcheck".
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 6 |