Vulnerabilities > Idevspot > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-09-19 | CVE-2006-4884 | Cross-Site Scripting vulnerability in Idevspot Isupport 1.8 Multiple cross-site scripting (XSS) vulnerabilities in IDevSpot iSupport 1.8 allow remote attackers to inject arbitrary web script or HTML via (1) the suser parameter in support/rightbar.php, (2) the ticket_id parameter in support/open_tickets.php, and (3) the cons_page_title parameter in index.php. network idevspot | 4.3 |
| 2006-09-19 | CVE-2006-4883 | Cross-Site Scripting vulnerability in IDevSpot BizDirectory Multiple cross-site scripting (XSS) vulnerabilities in IDevSpot BizDirectory allow remote attackers to inject arbitrary web script or HTML via (1) the stylesheet parameter in Feed.php or (2) the message parameter in status.php. network idevspot | 4.3 |
| 2006-09-13 | CVE-2006-4747 | Cross-Site Scripting vulnerability in IDevSpot TextAds Multiple cross-site scripting (XSS) vulnerabilities in IdevSpot TextAds allow remote attackers to inject arbitrary web script or HTML via (1) the id parameter in delete.php and (2) the error parameter in error.php. network idevspot | 4.3 |
| 2006-09-13 | CVE-2006-4742 | Input Validation vulnerability in Idevspot PHPlinkexchange 1.0 Cross-site scripting (XSS) vulnerability in user_add.php in IDevSpot PhpLinkExchange 1.0 allows remote attackers to inject arbitrary web script or HTML via the msg parameter. network idevspot | 4.3 |