Vulnerabilities > CVE-2006-4739 - Input Validation vulnerability in Jetbox CMS 2.1Sr1
Attack vector
NETWORK Attack complexity
HIGH Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Multiple cross-site scripting (XSS) vulnerabilities in Jetbox CMS allow remote attackers to inject arbitrary web script or HTML, as demonstrated via the OriginalImageData parameter to phpthumb.php.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |