Vulnerabilities > CVE-2006-1943 - Cross-Site Scripting vulnerability in Smarter Scripts Intellilink PRO 5.06

047910
CVSS 2.6 - LOW
Attack vector
NETWORK
Attack complexity
HIGH
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
network
high complexity
smarter-scripts
exploit available
NVD
Published: 2006-04-20
Updated: 2017-07-20

Summary

Multiple cross-site scripting (XSS) vulnerabilities in Smarter Scripts IntelliLink Pro 5.06 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) url parameter in addlink_lwp.cgi and the (2) id, (3) forgotid, and (4) forgotpass parameters in edit.cgi.

Vulnerable Configurations

Part Description Count
Application
Smarter_Scripts
1

Exploit-Db

  • descriptionIntelliLink Pro 5.06 addlink_lwp.cgi url Parameter XSS. CVE-2006-1943. Webapps exploit for cgi platform
    idEDB-ID:27685
    last seen2016-02-03
    modified2006-04-19
    published2006-04-19
    reporterr0t
    sourcehttps://www.exploit-db.com/download/27685/
    titleIntelliLink Pro 5.06 addlink_lwp.cgi url Parameter XSS
  • descriptionIntelliLink Pro 5.06 edit.cgi Multiple Parameter XSS. CVE-2006-1943 . Webapps exploit for cgi platform
    idEDB-ID:27686
    last seen2016-02-03
    modified2006-04-19
    published2006-04-19
    reporterr0t
    sourcehttps://www.exploit-db.com/download/27686/
    titleIntelliLink Pro 5.06 edit.cgi Multiple Parameter XSS

References