|
|
CVE Reference: CVE-2006-2425 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2006-2425 |
|
|
Description: Multiple cross-site scripting (XSS) vulnerabilities in PRV.php in PhpRemoteView, possibly 2003-10-23 and earlier, allow remote attackers to inject arbitrary web script or HTML via the (1) f, (2) d, and (3) ref parameters, and the (4) "MAKE DIR" and (5) "Full file name" fields. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/26473 SREASON http://securityreason.com/securityalert/902 SAID Secunia Advisory: SA20141 OSVDB 25572 MISC http://soot.shabgard.org/bugs/phpremoteview.txt BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/434118/100/0/threaded BID 17994 |
|
| Return to the previous page. |
