Vulnerabilities > CVE-2006-2913 - Input Validation vulnerability in OUT of the Trees web Design Selectapix 1.31

047910
CVSS 2.6 - LOW
Attack vector
NETWORK
Attack complexity
HIGH
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
network
high complexity
out-of-the-trees-web-design
NVD
Published: 2006-06-09
Updated: 2017-07-20

Summary

Cross-site scripting (XSS) vulnerability in SelectaPix 1.31 allows remote attackers to inject arbitrary web script or HTML via the albumID parameter to (1) popup.php and (2) view_album.php.

Vulnerable Configurations

Part Description Count
Application
Out_Of_The_Trees_Web_Design
1

Packetstorm

data sourcehttps://packetstormsecurity.com/files/download/47249/secunia-SelectaPix.txt
idPACKETSTORM:47249
last seen2016-12-05
published2006-06-12
reporterAndreas Sandblad
sourcehttps://packetstormsecurity.com/files/47249/secunia-SelectaPix.txt.html
titlesecunia-SelectaPix.txt

References