Vulnerabilities > CVE-2006-3284 - Cross-Site Scripting vulnerability in Datetopia Dating Agent PRO 4.7.1
Attack vector
NETWORK Attack complexity
HIGH Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Cross-site scripting (XSS) vulnerability in Dating Agent PRO 4.7.1 allows remote attackers to inject arbitrary web script or HTML via the login parameter in (1) webmaster/index.php and (2) search.php.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |