Vulnerabilities > CVE-2006-6768 - Cross-Site Scripting vulnerability in The Classified Ad System
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Multiple cross-site scripting (XSS) vulnerabilities in default.asp in PWP Technologies The Classified Ad System allow remote attackers to inject arbitrary web script or HTML via the (1) cat or (2) main parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | The Classified Ad System 3.0 default.asp Multiple Parameter XSS. CVE-2006-6768 . Webapps exploit for asp platform |
id | EDB-ID:29141 |
last seen | 2016-02-03 |
modified | 2006-11-20 |
published | 2006-11-20 |
reporter | laurent gaffie |
source | https://www.exploit-db.com/download/29141/ |
title | The Classified Ad System 3.0 default.asp Multiple Parameter XSS |