Vulnerabilities > CVE-2006-5066 - Unspecified vulnerability in Danphpsupport 0.5
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN danphpsupport
exploit available
Summary
Multiple cross-site scripting (XSS) vulnerabilities in DanPHPSupport 0.5, and other versions before 1.0, allow remote attackers to inject arbitrary web script or HTML via the (1) page parameter in index.php or the (2) do parameter in admin.php.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
description DanPHPSupport 0.5 admin.php do Parameter XSS. CVE-2006-5066. Webapps exploit for php platform id EDB-ID:28671 last seen 2016-02-03 modified 2006-09-25 published 2006-09-25 reporter You_You source https://www.exploit-db.com/download/28671/ title DanPHPSupport 0.5 admin.php do Parameter XSS description DanPHPSupport 0.5 index.php page Parameter XSS. CVE-2006-5066. Webapps exploit for php platform id EDB-ID:28670 last seen 2016-02-03 modified 2006-09-25 published 2006-09-25 reporter You_You source https://www.exploit-db.com/download/28670/ title DanPHPSupport 0.5 index.php page Parameter XSS
References
- http://securityreason.com/securityalert/1648
- http://securityreason.com/securityalert/1648
- http://www.securityfocus.com/archive/1/447002/100/0/threaded
- http://www.securityfocus.com/archive/1/447002/100/0/threaded
- http://www.securityfocus.com/archive/1/448693/100/0/threaded
- http://www.securityfocus.com/archive/1/448693/100/0/threaded
- http://www.securityfocus.com/bid/20203
- http://www.securityfocus.com/bid/20203
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29175
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29175