CVE-2006-2177
geoblog 1.0 - Cross-Site Scripting via viewcat.php cat Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2006-2177. PoCs published by SubjectZero.
AI-analyzed exploit summary This exploit demonstrates a cross-site scripting (XSS) vulnerability in GeoBlog due to improper input sanitization. The PoC provides a URL that, when accessed, executes arbitrary JavaScript in the context of the affected site.
Description
Cross-site scripting (XSS) vulnerability in viewcat.php in geoBlog 1.0 allows remote attackers to inject arbitrary web script or HTML via the cat parameter.
Exploits (1)
This exploit demonstrates a cross-site scripting (XSS) vulnerability in GeoBlog due to improper input sanitization. The PoC provides a URL that, when accessed, executes arbitrary JavaScript in the context of the affected site.