Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2006-0806

Опубликовано: 21 фев. 2006
Источник: debian
EPSS Средний

Описание

Multiple cross-site scripting (XSS) vulnerabilities in ADOdb 4.71, as used in multiple packages such as phpESP, allow remote attackers to inject arbitrary web script or HTML via (1) the next_page parameter in adodb-pager.inc.php and (2) other unspecified vectors related to PHP_SELF.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
libphp-adodbfixed4.72-0.1package
moodlefixed1.6.1+20060825-1package
cactifixed0.8.6d-1package

Примечания

  • according to maintainer, "Moodle neither uses nor plans to use

  • ADODB_Pager, so it's not affected by #360396, but include patch for

  • it anyway, just in case somebody decides to use it out of the blue

EPSS

Процентиль: 94%
0.12629
Средний

Связанные уязвимости

ubuntu логотип

CVE-2006-0806

ubuntu
больше 19 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in ADOdb 4.71, as used in multiple packages such as phpESP, allow remote attackers to inject arbitrary web script or HTML via (1) the next_page parameter in adodb-pager.inc.php and (2) other unspecified vectors related to PHP_SELF.

nvd логотип

CVE-2006-0806

nvd
больше 19 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in ADOdb 4.71, as used in multiple packages such as phpESP, allow remote attackers to inject arbitrary web script or HTML via (1) the next_page parameter in adodb-pager.inc.php and (2) other unspecified vectors related to PHP_SELF.

github логотип

GHSA-44cj-54hp-jr6f

github
больше 3 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in ADOdb 4.71, as used in multiple packages such as phpESP, allow remote attackers to inject arbitrary web script or HTML via (1) the next_page parameter in adodb-pager.inc.php and (2) other unspecified vectors related to PHP_SELF.

EPSS

Процентиль: 94%
0.12629
Средний