Vulnerabilities > CVE-2006-6205 - Unspecified vulnerability in Enthrallweb Ehomes
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN enthrallweb
exploit available
Summary
Multiple cross-site scripting (XSS) vulnerabilities in result.asp in Enthrallweb eHomes allow remote attackers to inject arbitrary web script or HTML via the (1) city or (2) State parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Enthrallweb eHomes result.asp Multiple Parameter XSS. CVE-2006-6205. Webapps exploit for asp platform |
| id | EDB-ID:29124 |
| last seen | 2016-02-03 |
| modified | 2006-11-20 |
| published | 2006-11-20 |
| reporter | laurent gaffie |
| source | https://www.exploit-db.com/download/29124/ |
| title | Enthrallweb eHomes result.asp Multiple Parameter XSS |
References
- http://s-a-p.ca/index.php?page=OurAdvisories&id=50
- http://www.securityfocus.com/bid/21193
- http://secunia.com/advisories/23016
- http://securityreason.com/securityalert/1942
- http://www.vupen.com/english/advisories/2006/4643
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30420
- http://www.securityfocus.com/archive/1/452107/100/100/threaded