CVE-2006-6844

Cross-site scripting (XSS) vulnerability in the optional user comment module in CMS Made Simple 1.0.2 allows remote attackers to inject arbitrary web script or HTML via the user comment form.
Configurations

Configuration 1 (hide)

cpe:2.3:a:cmsmadesimple:cms_made_simple:1.0.2:*:*:*:*:*:*:*

History

21 Nov 2024, 00:23

Type Values Removed Values Added
References () http://securityreason.com/securityalert/2087 - () http://securityreason.com/securityalert/2087 -
References () http://securitytracker.com/id?1017445 - Exploit () http://securitytracker.com/id?1017445 - Exploit
References () http://www.l0j1k.com/security/CMSMadeSimple_1.0.2_25Dec06.txt - Exploit () http://www.l0j1k.com/security/CMSMadeSimple_1.0.2_25Dec06.txt - Exploit
References () http://www.securityfocus.com/archive/1/455306/100/0/threaded - () http://www.securityfocus.com/archive/1/455306/100/0/threaded -
References () http://www.securityfocus.com/bid/21756 - () http://www.securityfocus.com/bid/21756 -

Information

Published : 2006-12-31 05:00

Updated : 2024-11-21 00:23


NVD link : CVE-2006-6844

Mitre link : CVE-2006-6844

CVE.ORG link : CVE-2006-6844


JSON object : View

Products Affected

cmsmadesimple

  • cms_made_simple