QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2006-0208

Back to search

CVE-2006-0208

Published: Jan 13, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

Multiple cross-site scripting (XSS) vulnerabilities in PHP 4.4.1 and 5.1.1, when display_errors and html_errors are on, allow remote attackers to inject arbitrary web script or HTML via inputs to PHP applications that are not filtered when they are included in the resulting error message.

VendorProductVersions

n/a

n/a

affected
n/a

References

19355
third-party-advisory
x_refsource_SECUNIA
21252
third-party-advisory
x_refsource_SECUNIA
USN-261-1
vendor-advisory
x_refsource_UBUNTU
SUSE-SR:2006:004
vendor-advisory
x_refsource_SUSE
18431
third-party-advisory
x_refsource_SECUNIA
20222
third-party-advisory
x_refsource_SECUNIA
20210
third-party-advisory
x_refsource_SECUNIA
ADV-2006-0369
vdb-entry
x_refsource_VUPEN
ADV-2006-0177
vdb-entry
x_refsource_VUPEN
RHSA-2006:0276
vendor-advisory
x_refsource_REDHAT
19179
third-party-advisory
x_refsource_SECUNIA
GLSA-200603-22
vendor-advisory
x_refsource_GENTOO
RHSA-2006:0501
vendor-advisory
x_refsource_REDHAT
RHSA-2006:0549
vendor-advisory
x_refsource_REDHAT
18697
third-party-advisory
x_refsource_SECUNIA
20951
third-party-advisory
x_refsource_SECUNIA
19832
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:10064
vdb-entry
signature
x_refsource_OVAL
MDKSA-2006:028
vendor-advisory
x_refsource_MANDRIVA
16803
vdb-entry
x_refsource_BID
21564
third-party-advisory
x_refsource_SECUNIA
19012
third-party-advisory
x_refsource_SECUNIA
ADV-2006-2685
vdb-entry
x_refsource_VUPEN

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now