Vulnerabilities > CVE-2006-1916 - Unspecified vulnerability in Dbbs 2.0

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

dbbs

exploit available

NVD

Published: 2006-04-20

Updated: 2024-11-21

Summary

Multiple cross-site scripting (XSS) vulnerabilities in profile.php in DbbS 2.0-alpha and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) ulocation or (2) uhobbies parameters.

Vulnerable Configurations

Part	Description	Count
Application	Dbbs Dbbs Dbbs 2.0 Dbbs Dbbs *	2

Exploit-Db

description	DbbS 2.0 Multiple Input Validation Vulnerabilities. CVE-2006-1916. Webapps exploit for php platform
id	EDB-ID:27663
last seen	2016-02-03
modified	2006-04-17
published	2006-04-17
reporter	rgod
source	https://www.exploit-db.com/download/27663/
title	DbbS 2.0 - Multiple Input Validation Vulnerabilities

References

http://securityreason.com/securityalert/771
http://securityreason.com/securityalert/771
http://www.securityfocus.com/archive/1/431117
http://www.securityfocus.com/archive/1/431117
http://www.securityfocus.com/bid/17559
http://www.securityfocus.com/bid/17559
https://exchange.xforce.ibmcloud.com/vulnerabilities/25923
https://exchange.xforce.ibmcloud.com/vulnerabilities/25923