Vulnerabilities > CVE-2006-4739 - Input Validation vulnerability in Jetbox CMS 2.1Sr1

047910
CVSS 2.6 - LOW
Attack vector
NETWORK
Attack complexity
HIGH
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
network
high complexity
jetbox

Summary

Multiple cross-site scripting (XSS) vulnerabilities in Jetbox CMS allow remote attackers to inject arbitrary web script or HTML, as demonstrated via the OriginalImageData parameter to phpthumb.php.

Vulnerable Configurations

Part Description Count
Application
Jetbox
1