Vulnerabilities > CVE-2006-5057 - Unspecified vulnerability in Ktools.Net Photostore
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN ktools-net
exploit available
Summary
Multiple cross-site scripting (XSS) vulnerabilities in Ktools.net PhotoStore allow remote attackers to inject arbitrary web script or HTML via the (1) gid parameter in details.php, or the (2) photogid parameter in view_photog.php.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
description PhotoStore details.php gid Parameter XSS. CVE-2006-5057. Webapps exploit for php platform id EDB-ID:28662 last seen 2016-02-03 modified 2006-09-25 published 2006-09-25 reporter meto5757 source https://www.exploit-db.com/download/28662/ title PhotoStore details.php gid Parameter XSS description PhotoStore view_photog.php photogid Parameter XSS. CVE-2006-5057 . Webapps exploit for php platform id EDB-ID:28663 last seen 2016-02-03 modified 2006-09-25 published 2006-09-25 reporter meto5757 source https://www.exploit-db.com/download/28663/ title PhotoStore view_photog.php photogid Parameter XSS
References
- http://secunia.com/advisories/22122
- http://secunia.com/advisories/22122
- http://securityreason.com/securityalert/1640
- http://securityreason.com/securityalert/1640
- http://www.securityfocus.com/archive/1/446909/100/0/threaded
- http://www.securityfocus.com/archive/1/446909/100/0/threaded
- http://www.securityfocus.com/bid/20172
- http://www.securityfocus.com/bid/20172
- http://www.vupen.com/english/advisories/2006/3781
- http://www.vupen.com/english/advisories/2006/3781