Vulnerabilities > CVE-2006-1404 - Unspecified vulnerability in Industrial Imagination Blankol
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN industrial-imagination
exploit available
Summary
Multiple cross-site scripting (XSS) vulnerabilities in bol.cgi in BlankOL 1.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) file or (2) function parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | BlankOL 1.0 Bol.CGI Multiple Cross-Site Scripting Vulnerabilities. CVE-2006-1404. Webapps exploit for cgi platform |
| id | EDB-ID:27488 |
| last seen | 2016-02-03 |
| modified | 2006-03-27 |
| published | 2006-03-27 |
| reporter | r0t |
| source | https://www.exploit-db.com/download/27488/ |
| title | BlankOL 1.0 Bol.CGI Multiple Cross-Site Scripting Vulnerabilities |
References
- http://pridels0.blogspot.com/2006/03/blankol-xss-vuln.html
- http://pridels0.blogspot.com/2006/03/blankol-xss-vuln.html
- http://secunia.com/advisories/19387
- http://secunia.com/advisories/19387
- http://www.osvdb.org/24124
- http://www.osvdb.org/24124
- http://www.securityfocus.com/bid/17265
- http://www.securityfocus.com/bid/17265
- http://www.vupen.com/english/advisories/2006/1111
- http://www.vupen.com/english/advisories/2006/1111
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25488
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25488