Retard

6 exploits Active since Mar 2006
CVE-2006-1202 EXPLOITDB text WORKING POC
textfileBB 1.0 - Cross-Site Scripting via mess or user Parameters
Multiple cross-site scripting (XSS) vulnerabilities in textfileBB 1.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) mess and (2) user parameters in messanger.php, possibly requiring a URL encoded value.
CVE-2006-1073 EXPLOITDB text WRITEUP
simplog < 1.0.2 - Directory Traversal via act or blogid Parameters
Directory traversal vulnerability in index.php in Daverave Simplog 1.0.2 and earlier allows remote attackers to include or read arbitrary .txt files via the (1) act and (2) blogid parameters.
CVE-2006-1199 EXPLOITDB text WRITEUP
daverave Link Bank - Cross-Site Scripting via iframe.php site Parameter
Cross-site scripting (XSS) vulnerability in iframe.php in daverave Link Bank allows remote attackers to inject arbitrary web script or HTML via the site parameter.
CVE-2006-1080 EXPLOITDB text WRITEUP
Game-Panel <= 2.6.1 - Cross-Site Scripting via Login Message Parameter
Cross-site scripting (XSS) vulnerability in login.php in Game-Panel 2.6.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the message parameter, possibly requiring a URL encoded value.
CVE-2006-1144 EXPLOITDB text WRITEUP
HitHost 1.0.0 - Cross-Site Scripting via User Parameter in deleteuser.php and Hits Parameter in viewuser.php
Cross-site scripting (XSS) vulnerability in HitHost 1.0.0 allows remote attackers to inject arbitrary web script or HTML via (1) the user parameter in deleteuser.php and (2) the hits parameter in viewuser.php.
CVE-2006-1144 EXPLOITDB text WRITEUP
HitHost 1.0.0 - Cross-Site Scripting via User Parameter in deleteuser.php and Hits Parameter in viewuser.php
Cross-site scripting (XSS) vulnerability in HitHost 1.0.0 allows remote attackers to inject arbitrary web script or HTML via (1) the user parameter in deleteuser.php and (2) the hits parameter in viewuser.php.