Описание
Cross-site scripting (XSS) vulnerability in search.php in PT News 1.7.8 allows remote attackers to inject arbitrary web script or HTML via the pgname parameter.
Cross-site scripting (XSS) vulnerability in search.php in PT News 1.7.8 allows remote attackers to inject arbitrary web script or HTML via the pgname parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-4917
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29043
- http://secunia.com/advisories/22028
- http://securityreason.com/securityalert/1612
- http://www.securityfocus.com/archive/1/446417/100/0/threaded
- http://www.securityfocus.com/bid/20090
- http://www.vupen.com/english/advisories/2006/3713
EPSS
Процентиль: 75%
0.00895
Низкий
CVE ID
Связанные уязвимости
nvd
больше 19 лет назад
Cross-site scripting (XSS) vulnerability in search.php in PT News 1.7.8 allows remote attackers to inject arbitrary web script or HTML via the pgname parameter.
EPSS
Процентиль: 75%
0.00895
Низкий