Vulnerabilities > CVE-2006-2874 - Unspecified vulnerability in Osads Alliance Database Osads Alliance Database 1.1/1.2/1.3
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Unspecified vulnerability in OSADS Alliance Database before 1.4 has unknown impact and attack vectors related to a "Security Leak to lock in HTML-Code," possibly due to a cross-site scripting (XSS) vulnerability involving comments.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 3 |
References
- http://osads.sourceforge.net/viewtopic.php?t=3
- http://osads.sourceforge.net/viewtopic.php?t=3
- http://secunia.com/advisories/20441
- http://secunia.com/advisories/20441
- http://sourceforge.net/project/shownotes.php?release_id=422081
- http://sourceforge.net/project/shownotes.php?release_id=422081
- http://www.securityfocus.com/bid/18280
- http://www.securityfocus.com/bid/18280
- http://www.vupen.com/english/advisories/2006/2143
- http://www.vupen.com/english/advisories/2006/2143
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26914
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26914