Vulnerabilities > CVE-2006-4747 - Cross-Site Scripting vulnerability in IDevSpot TextAds

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

idevspot

exploit available

NVD

Published: 2006-09-13

Updated: 2018-10-17

Summary

Multiple cross-site scripting (XSS) vulnerabilities in IdevSpot TextAds allow remote attackers to inject arbitrary web script or HTML via (1) the id parameter in delete.php and (2) the error parameter in error.php.

Vulnerable Configurations

Part	Description	Count
Application	Idevspot Idevspot Textads *	1

Exploit-Db

description	TextAds delete.php id Parameter XSS. CVE-2006-4747. Webapps exploit for php platform
id	EDB-ID:28502
last seen	2016-02-03
modified	2006-09-09
published	2006-09-09
reporter	s3rv3r_hack3r
source	https://www.exploit-db.com/download/28502/
title	TextAds delete.php id Parameter XSS

description	TextAds error.php error Parameter XSS. CVE-2006-4747. Webapps exploit for php platform
id	EDB-ID:28503
last seen	2016-02-03
modified	2006-09-09
published	2006-09-09
reporter	s3rv3r_hack3r
source	https://www.exploit-db.com/download/28503/
title	TextAds error.php error Parameter XSS

Summary

Vulnerable Configurations

Exploit-Db

References