CVE-2006-1801

2006-04-1810:00:00

mitre

www.cve.org

AI Score

5.7

Confidence

High

EPSS

0.007

Percentile

80.6%

JSON

Cross-site scripting (XSS) vulnerability in planetsearchplus.php in planetSearch+ allows remote attackers to inject arbitrary web script or HTML via the search_exp parameter.

References

d4igoro.blogspot.com/2006/04/planetsearch-xss-vulnerabilities.html

secunia.com/advisories/19681

www.securityfocus.com/archive/1/431033/100/0/threaded

www.securityfocus.com/bid/17527

www.vupen.com/english/advisories/2006/1368

exchange.xforce.ibmcloud.com/vulnerabilities/25832