Vulnerabilities > CVE-2006-6571 - Input Validation vulnerability in Genesistrader 1.0

047910
CVSS 6.8 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
genesistrader
exploit available

Summary

Multiple cross-site scripting (XSS) vulnerabilities in form.php in GenesisTrader 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) cuve, (2) chem, (3) do, and possibly other parameters.

Vulnerable Configurations

Part Description Count
Application
Genesistrader
1

Exploit-Db

descriptionGenesisTrader 1.0 form.php Multiple Parameter XSS. CVE-2006-6571. Webapps exploit for php platform
idEDB-ID:29283
last seen2016-02-03
modified2006-12-14
published2006-12-14
reporterMr_KaLiMaN
sourcehttps://www.exploit-db.com/download/29283/
titleGenesisTrader 1.0 form.php Multiple Parameter XSS