Vulnerabilities > CVE-2006-6520 - Unspecified vulnerability in Scriptphp Messageriescripthp 2.0
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN scriptphp
exploit available
Summary
Multiple cross-site scripting (XSS) vulnerabilities in Messageriescripthp 2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) pseudo parameter to (a) existepseudo.php, the (2) email parameter to (b) existeemail.php, or the (3) pageName or (4) cssform parameter to (c) Contact/contact.php.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
description Messageriescripthp 2.0 existepseudo.php pseudo Parameter XSS. CVE-2006-6520. Webapps exploit for php platform id EDB-ID:29243 last seen 2016-02-03 modified 2006-12-09 published 2006-12-09 reporter Mr_KaLiMaN source https://www.exploit-db.com/download/29243/ title Messageriescripthp 2.0 existepseudo.php pseudo Parameter XSS description Messageriescripthp 2.0 existeemail.php email Parameter XSS. CVE-2006-6520. Webapps exploit for php platform id EDB-ID:29244 last seen 2016-02-03 modified 2006-12-09 published 2006-12-09 reporter Mr_KaLiMaN source https://www.exploit-db.com/download/29244/ title Messageriescripthp 2.0 existeemail.php email Parameter XSS description Messageriescripthp 2.0 Contact/contact.php Multiple Parameter XSS. CVE-2006-6520. Webapps exploit for php platform id EDB-ID:29245 last seen 2016-02-03 modified 2006-12-09 published 2006-12-09 reporter Mr_KaLiMaN source https://www.exploit-db.com/download/29245/ title Messageriescripthp 2.0 Contact/contact.php Multiple Parameter XSS
References
- http://secunia.com/advisories/23319
- http://secunia.com/advisories/23319
- http://securityreason.com/securityalert/2026
- http://securityreason.com/securityalert/2026
- http://www.securityfocus.com/archive/1/453965/100/0/threaded
- http://www.securityfocus.com/archive/1/453965/100/0/threaded
- http://www.securityfocus.com/bid/21513
- http://www.securityfocus.com/bid/21513
- http://www.vupen.com/english/advisories/2006/4939
- http://www.vupen.com/english/advisories/2006/4939
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30819
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30819