Back to search
CVE-2006-1761
Published: Apr 13, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
Cross-site scripting vulnerability in index.php in blur6ex 0.3.452 allows remote attackers to inject arbitrary web script or HTML via the errormsg parameter, which is not sanitized in the error message. NOTE: the vector in the shard parameter is not XSS and has been assigned a separate name.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20060413 Re: Multiple vulnerabilities in Blur6ex
mailing-list
x_refsource_BUGTRAQ
20060412 Multiple vulnerabilities in Blur6ex (fwd)
mailing-list
x_refsource_VIM
blur6ex-index-xss(25757)
vdb-entry
x_refsource_XF
17465
vdb-entry
x_refsource_BID
20060411 Multiple vulnerabilities in Blur6ex
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now