Lucene search
KuonEDB-ID:28428HistoryOct 13, 2006 - 12:00 a.m.
YaPiG 0.9x - 'Thanks_comment.php' Cross-Site Scripting
2006-10-1300:00:00
Kuon
www.exploit-db.com
56
AI Score
7.4
Confidence
Low
source: https://www.securityfocus.com/bid/19709/info
Yapig is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. This may let an attacker steal cookie-based authentication credentials and launch other attacks.
This issue affects version 0.95b; other versions may also be vulnerable.
http://www.example.com/[PATH]/template/default/thanks_comment.php?D_REFRESH_URL=[XSS]Related
cvelist
cvelist
CVE-2006-4421
2006-08-29 00:00:00
cve
cve
CVE-2006-4421
2006-08-29 00:04:00
nvd
nvd
CVE-2006-4421
2006-08-29 00:04:00
nessus
nessus
YaPiG <= 0.9.5b Multiple Vulnerabilities
2005-08-27 00:00:00