Vulnerabilities > CVE-2006-5060 - Unspecified vulnerability in Jamroom 3.0.16
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN jamroom
exploit available
Summary
Cross-site scripting (XSS) vulnerability in login.php in Jamroom 3.0.16 and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the forgot parameter in the forgot mode.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Jamroom 3.0.16 Login.php Cross-Site Scripting Vulnerability. CVE-2006-5060. Webapps exploit for palm_os platform |
| id | EDB-ID:28659 |
| last seen | 2016-02-03 |
| modified | 2006-09-24 |
| published | 2006-09-24 |
| reporter | meto5757 |
| source | https://www.exploit-db.com/download/28659/ |
| title | Jamroom 3.0.16 Login.php Cross-Site Scripting Vulnerability |
References
- http://secunia.com/advisories/22077
- http://secunia.com/advisories/22077
- http://securityreason.com/securityalert/1649
- http://securityreason.com/securityalert/1649
- http://www.securityfocus.com/archive/1/446879/100/0/threaded
- http://www.securityfocus.com/archive/1/446879/100/0/threaded
- http://www.securityfocus.com/bid/20162
- http://www.securityfocus.com/bid/20162
- http://www.vupen.com/english/advisories/2006/3766
- http://www.vupen.com/english/advisories/2006/3766
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29131
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29131