Vulnerabilities > CVE-2006-6459 - HTML Injection vulnerability in PHPbb Toplist 1.3.7
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL network
phpbb
Summary
Cross-site scripting (XSS) vulnerability in toplist.php in PhpBB Toplist 1.3.7 allows remote attackers to inject arbitrary HTML or web script via the (1) Name and (2) Information fields when adding a new site (toplistnew action).
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |