CVE-2006-1916 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2006-1916

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Multiple cross-site scripting (XSS) vulnerabilities in profile.php in DbbS 2.0-alpha and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) ulocation or (2) uhobbies parameters.

Affected Software

Name	Vendor	Start Version	End Version
Dbbs	Dbbs	*	2.0-alpha (including)
Dbbs	Dbbs	2.0 (including)	2.0 (including)

References

http://securityreason.com/securityalert/771
http://www.securityfocus.com/archive/1/431117
http://www.securityfocus.com/bid/17559
https://exchange.xforce.ibmcloud.com/vulnerabilities/25923
http://securityreason.com/securityalert/771
http://www.securityfocus.com/archive/1/431117
http://www.securityfocus.com/bid/17559
https://exchange.xforce.ibmcloud.com/vulnerabilities/25923