Vulnerabilities > CVE-2006-1582 - Cross-Site Scripting vulnerability in Blanknberg 0.2

CVSS 5.8 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

NONE

network

blanknberg

exploit available

NVD

Published: 2006-04-02

Updated: 2017-07-20

Summary

Cross-site scripting (XSS) vulnerability in index.php in Blank'N'Berg 0.2 allows remote attackers to inject arbitrary web script or HTML via the _path parameter. NOTE: this might be resultant from the directory traversal issue.

Vulnerable Configurations

Part	Description	Count
Application	Blanknberg Blanknberg Blanknberg 0.2	1

Exploit-Db

description	Blank'N'Berg 0.2 Cross-Site Scripting Vulnerability. CVE-2006-1582. Webapps exploit for php platform
id	EDB-ID:27551
last seen	2016-02-03
modified	2006-03-31
published	2006-03-31
reporter	Amine ABOUD
source	https://www.exploit-db.com/download/27551/
title	Blank'N'Berg 0.2 - Cross-Site Scripting Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References