CVE-2006-1435 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2006-1435

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Cross-site scripting (XSS) vulnerability in genmessage.php in Accounting Receiving and Inventory Administration (ARIA) 0.99-6 allows remote attackers to inject arbitrary web script or HTML via the Message Field (message parameter).

Affected Software

Name	Vendor	Start Version	End Version
Aria	Accounting_receiving_and_inventory_administration	0.99-6 (including)	0.99-6 (including)

References

http://osvdb.org/ref/24/24255-aria.txt
http://secunia.com/advisories/19551
http://www.osvdb.org/24255
http://www.securityfocus.com/bid/17411
https://exchange.xforce.ibmcloud.com/vulnerabilities/25688
http://osvdb.org/ref/24/24255-aria.txt
http://secunia.com/advisories/19551
http://www.osvdb.org/24255
http://www.securityfocus.com/bid/17411
https://exchange.xforce.ibmcloud.com/vulnerabilities/25688