Vulnerabilities > CVE-2006-1752 - Input Validation vulnerability in MvBlog
Attack vector
NETWORK Attack complexity
HIGH Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Multiple cross-site scripting (XSS) vulnerabilities in the backend in MvBlog before 1.6 allow remote attackers to inject arbitrary web script or HTML via the (1) name or (2) body fields in a comment.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 5 |