CVE Vulnerabilities

CVE-2006-1752

Published: Apr 12, 2006 | Modified: Jul 20, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
2.6 LOW
AV:N/AC:H/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

Multiple cross-site scripting (XSS) vulnerabilities in the backend in MvBlog before 1.6 allow remote attackers to inject arbitrary web script or HTML via the (1) name or (2) body fields in a comment.

Affected Software

Name Vendor Start Version End Version
Mvblog Michiel_van_baak 1.2 1.2
Mvblog Michiel_van_baak 1.5 1.5
Mvblog Michiel_van_baak 1.1 1.1
Mvblog Michiel_van_baak 1.3 1.3
Mvblog Michiel_van_baak 1.0 1.0

References