QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2006-5770

Back to search

CVE-2006-5770

Published: Nov 6, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

Multiple cross-site scripting (XSS) vulnerabilities in ac4p Mobile allow remote attackers to inject arbitrary web script or HTML via (1) Bloks, (2) Newnews, (3) lBlok, and (4) foooot parameter in (a) index.php; Newnews, (5) newmsgs, and Bloks parameter in (b) MobileNews.php; Newnews parameter in (c) polls.php; (6) cats parameter in (d) send.php; (7) footer parameter in (e) up.php; and (8) pagenav parameter in (f) cp/index.php.

VendorProductVersions

n/a

n/a

affected
n/a

References

32049
vdb-entry
x_refsource_OSVDB
32050
vdb-entry
x_refsource_OSVDB
mobile-index-xss(30007)
vdb-entry
x_refsource_XF
32051
vdb-entry
x_refsource_OSVDB
32048
vdb-entry
x_refsource_OSVDB
32047
vdb-entry
x_refsource_OSVDB
20061103 XSS in script Mobile
mailing-list
x_refsource_BUGTRAQ
20895
vdb-entry
x_refsource_BID
32046
vdb-entry
x_refsource_OSVDB

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now