QwikSec

Security Database

CVE

CWE

Training

CVE-2006-3521

Published: Jul 12, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

Multiple cross-site scripting (XSS) vulnerabilities in index/siteforge-bugs-action/proj.siteforge in SiteForge Collaborative Development Platform 1.0.4 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) _status, (2) _extra1, (3) _extra2, or (4) _extra3 parameters.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://pridels0.blogspot.com/2006/06/siteforge-collaborative-development_15.html

x_refsource_MISC

siteforgecdp-proj-xss(27223)

vdb-entry

x_refsource_XF

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.