CVE-2006-5626

NONECVSS 0.0

0.0

Cross-site scripting (XSS) vulnerability in cms_images/js/htmlarea/htmlarea.php in phpFaber Content Management System (CMS) before 1.3.36 on 20061026 allows remote attackers to inject arbitrary web script or HTML, probably via arbitrary parameters in the query string, as demonstrated with a vigilon parameter. NOTE: earlier downloads of 1.3.36 have the vulnerability; the software was updated without changing the version number.

🔗 References (14)

cve@mitrehttp://secunia.com/advisories/22629
cve@mitrehttp://securityreason.com/securityalert/1802
cve@mitrehttp://www.securityfocus.com/archive/1/449894/100/0/threaded
cve@mitrehttp://www.securityfocus.com/bid/20821
cve@mitrehttp://www.vigilon.com/advisories/vg-phpfaber-24-10-2006.txt
cve@mitrehttp://www.vigilon.com/resources/102506c.html
cve@mitrehttp://www.vupen.com/english/advisories/2006/4260
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/22629
af854a3a-2127-422b-91ae-364da2661108http://securityreason.com/securityalert/1802
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/449894/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/20821
af854a3a-2127-422b-91ae-364da2661108http://www.vigilon.com/advisories/vg-phpfaber-24-10-2006.txt
af854a3a-2127-422b-91ae-364da2661108http://www.vigilon.com/resources/102506c.html
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2006/4260

Is Your Infrastructure Affected by CVE-2006-5626?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2006-5626

📅 Published

🔄 Last Modified

🔗 References (14)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2006-5626?