Vulnerabilities > CVE-2006-2160 - HTML Injection vulnerability in Russcomm Network LoginPHP Username
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE network
russcom-network
Summary
Cross-site scripting (XSS) vulnerability in Russcom Network Loginphp (Russcom.Loginphp) allows remote attackers to inject arbitrary web script or HTML via the username field when registering.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |