CVE-2006-1640 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2006-1640

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Cross-site scripting (XSS) vulnerability in news.php in CzarNews 1.14 allows remote attackers to inject arbitrary web script or HTML via the email parameter.

Affected Software

Name	Vendor	Start Version	End Version
Czarnews	Czaries_network	1.14	1.14

References

http://evuln.com/vulns/118/summary.html
http://secunia.com/advisories/19541
http://securityreason.com/securityalert/732
http://securitytracker.com/id?1015957
http://www.osvdb.org/24381
http://www.securityfocus.com/archive/1/431132/100/0/threaded
http://www.securityfocus.com/bid/17380
http://www.vupen.com/english/advisories/2006/1237
https://exchange.xforce.ibmcloud.com/vulnerabilities/25623