CVE-2006-0471 | Vulnerability Database | Aqua Security

Cross-site scripting (XSS) vulnerability in the bbcode function in functions.php in my little homepage my little forum, as last modified in June 2005, allows remote attackers to inject arbitrary Javascript via a javascript URI in BBcode link tags.

Affected Software

Name	Vendor	Start Version	End Version
My_little_forum	My_little_homepage	2004-04-20 (including)	2004-04-20 (including)

References

http://attrition.org/pipermail/vim/2006-January/000520.html
http://evuln.com/vulns/51/
http://evuln.com/vulns/51/summary.html
http://secunia.com/advisories/18628
http://www.osvdb.org/22856
http://www.securityfocus.com/archive/1/423167/100/0/threaded
http://www.securityfocus.com/bid/16395
http://www.vupen.com/english/advisories/2006/0349
https://exchange.xforce.ibmcloud.com/vulnerabilities/24310
http://attrition.org/pipermail/vim/2006-January/000520.html
http://evuln.com/vulns/51/
http://evuln.com/vulns/51/summary.html
http://secunia.com/advisories/18628
http://www.osvdb.org/22856
http://www.securityfocus.com/archive/1/423167/100/0/threaded
http://www.securityfocus.com/bid/16395
http://www.vupen.com/english/advisories/2006/0349
https://exchange.xforce.ibmcloud.com/vulnerabilities/24310

NVD	https://nvd.nist.gov/vuln/detail/CVE-2006-0471
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html