Vulnerabilities > CVE-2006-2515 - Cross-Site Scripting vulnerability in Hiox India Guest Book 3.1

CVSS 6.8 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

hiox-india

NVD

Published: 2006-05-22

Updated: 2018-10-18

Summary

Cross-site scripting (XSS) vulnerability in index.php in Hiox Guestbook 3.1 allows remote attackers to inject arbitrary web script or HTML via the input forms for signing the guestbook.

Vulnerable Configurations

Part	Description	Count
Application	Hiox_India Hiox India Guest Book 3.1	1

References

http://secunia.com/advisories/20252
http://securityreason.com/securityalert/938
http://www.osvdb.org/25712
http://www.securityfocus.com/archive/1/434686/100/0/threaded
http://www.vupen.com/english/advisories/2006/1929
https://exchange.xforce.ibmcloud.com/vulnerabilities/26620