Описание
Multiple cross-site scripting (XSS) vulnerabilities in OrbitHYIP 2.0 and earlier allow remote attackers to inject arbitrary web script via the (1) referral parameter to signup.php or (2) id parameter to members.php.
Multiple cross-site scripting (XSS) vulnerabilities in OrbitHYIP 2.0 and earlier allow remote attackers to inject arbitrary web script via the (1) referral parameter to signup.php or (2) id parameter to members.php.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-2140
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26163
- http://pridels0.blogspot.com/2006/04/orbithyip-xss.html
- http://secunia.com/advisories/19877
- http://www.osvdb.org/25141
- http://www.osvdb.org/25142
- http://www.securityfocus.com/bid/17766
- http://www.vupen.com/english/advisories/2006/1583
EPSS
Процентиль: 76%
0.00943
Низкий
CVE ID
Связанные уязвимости
nvd
почти 20 лет назад
Multiple cross-site scripting (XSS) vulnerabilities in OrbitHYIP 2.0 and earlier allow remote attackers to inject arbitrary web script via the (1) referral parameter to signup.php or (2) id parameter to members.php.
EPSS
Процентиль: 76%
0.00943
Низкий