CVE-2006-4708

Vikingboard 0.1b - XSS

Title source: llm

Description

Multiple cross-site scripting (XSS) vulnerabilities in Vikingboard 0.1b allow remote attackers to inject arbitrary web script or HTML via the (1) act parameter in (a) help.php and (b) search.php, and the (2) p parameter in report.php.

Exploits (2)

exploitdb WRITEUP VERIFIED

by Hessam-x · textwebappsphp

https://www.exploit-db.com/exploits/28498

View Code ZIP pw:eip

exploitdb WRITEUP VERIFIED

by Hessam-x · textwebappsphp

https://www.exploit-db.com/exploits/28497

View Code ZIP pw:eip

References (3)

Core 3

Core References

Exploit vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/19916

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/445719/100/0/threaded

Third Party Advisory third-party-advisory x_refsource_sreason

http://securityreason.com/securityalert/1539

Scores

EPSS 0.0029

EPSS Percentile 52.6%

Details

Status published

Products (1)

vikingboard/vikingboard 0.1b

Published Sep 12, 2006

Tracked Since Feb 18, 2026