CVE-2006-0894

NOCC Webmail 1.0 - Cross-Site Scripting via Multiple Parameters

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 4 public exploits for CVE-2006-0894. PoCs published by rgod.

AI-analyzed exploit summary The provided text describes a vulnerability in NOCC Webmail involving input-validation issues leading to arbitrary PHP code injection and XSS. It includes a sample XSS payload but lacks executable exploit code.

Description

Multiple cross-site scripting (XSS) vulnerabilities in NOCC Webmail 1.0 allow remote attackers to inject arbitrary web script or HTML via (1) the html_error_occurred parameter in error.php, (2) html_filter_select parameter in filter_prefs.php, (3) html_no_mail parameter in no_mail.php, the (4) page_line, (5) prev, and (6) next parameters in html_bottom_table.php, and the (7) _SESSION['nocc_theme'] parameter in footer.php.

Exploits (4)

exploitdb WRITEUP VERIFIED
by rgod · textwebappsphp
https://www.exploit-db.com/exploits/27301

The provided text describes a vulnerability in NOCC Webmail involving input-validation issues leading to arbitrary PHP code injection and XSS. It includes a sample XSS payload but lacks executable exploit code.

Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Theoretical
Target: NOCC Webmail
No auth needed
Prerequisites: Access to the vulnerable web application
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by rgod · textwebappsphp
https://www.exploit-db.com/exploits/27302

This exploit demonstrates XSS vulnerabilities in NOCC Webmail due to improper input sanitization. The PoC provides URLs that inject arbitrary JavaScript code via the 'page_line', 'prev', and 'next' parameters.

Classification
Working Poc 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: NOCC Webmail
No auth needed
Prerequisites: Access to the vulnerable NOCC Webmail instance
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by rgod · textwebappsphp
https://www.exploit-db.com/exploits/27300

The provided text describes a vulnerability in NOCC Webmail related to input validation failures, allowing for arbitrary PHP code injection and XSS attacks. It includes a sample XSS payload but lacks executable exploit code.

Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Theoretical
Target: NOCC Webmail
No auth needed
Prerequisites: Access to the vulnerable web application
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by rgod · textwebappsphp
https://www.exploit-db.com/exploits/27299

The provided text describes a vulnerability in NOCC Webmail involving input-validation issues leading to arbitrary PHP code injection and XSS. It includes a sample XSS payload but lacks executable exploit code.

Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Theoretical
Target: NOCC Webmail
No auth needed
Prerequisites: Access to the vulnerable web application
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (10)

Core 10
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1015671
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/23426
Exploit mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2006-02/0418.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/23427
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/23423
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/16921
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/23425
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/16793
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/23424

Scores

EPSS 0.0263
EPSS Percentile 83.5%

Details

Status published
Products (1)
nocc/nocc 1.0
Published Feb 25, 2006
Tracked Since Feb 18, 2026