CVE-2006-4755
phpMyDirectory <10.4.6 - XSS
Title source: llmDescription
Cross-site scripting (XSS) vulnerability in alpha.php in phpMyDirectory 10.4.6 and earlier allows remote attackers to inject arbitrary web script or HTML via the letter parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information.
Scores
EPSS
0.0035
EPSS Percentile
57.0%
Classification
CWE
CWE-79
Status
draft
Affected Products (36)
accomplishtechnology/phpmydirectory
< 10.4.6
accomplishtechnology/phpmydirectory
accomplishtechnology/phpmydirectory
accomplishtechnology/phpmydirectory
accomplishtechnology/phpmydirectory
accomplishtechnology/phpmydirectory
accomplishtechnology/phpmydirectory
accomplishtechnology/phpmydirectory
accomplishtechnology/phpmydirectory
accomplishtechnology/phpmydirectory
accomplishtechnology/phpmydirectory
accomplishtechnology/phpmydirectory
accomplishtechnology/phpmydirectory
accomplishtechnology/phpmydirectory
accomplishtechnology/phpmydirectory
... and 21 more
Timeline
Published
Sep 13, 2006
Tracked Since
Feb 18, 2026