CVE-2006-5120
Red Mombin 0.7 - Cross-Site Scripting in index.php and process_login.php
Title source: llmExploitation Summary
EIP tracks 2 public exploits for CVE-2006-5120. PoCs published by Armorize Technologies.
AI-analyzed exploit summary The provided text describes a cross-site scripting (XSS) vulnerability in Red Mombin version 0.7, where user-supplied input is not properly sanitized. The writeup references a specific endpoint (`process_login.php`) but does not include actual exploit code or a proof-of-concept.
Description
Multiple cross-site scripting (XSS) vulnerabilities in Scott Metoyer Red Mombin 0.7 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors related to (1) index.php and (2) process_login.php.
Exploits (2)
The provided text describes a cross-site scripting (XSS) vulnerability in Red Mombin version 0.7, where user-supplied input is not properly sanitized. The writeup references a specific endpoint (`process_login.php`) but does not include actual exploit code or a proof-of-concept.
The provided text describes a cross-site scripting (XSS) vulnerability in Red Mombin version 0.7, where user-supplied input is not properly sanitized, allowing arbitrary script execution in the context of the affected site.