CVE-2006-4088 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2006-4088

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Multiple cross-site scripting (XSS) vulnerabilities in CivicSpace 0.8.5 allow remote attackers to inject arbitrary web script or HTML via the (1) Subject, (2) Comment, and (3) Add new comment sections.

Affected Software

Name	Vendor	Start Version	End Version
Civicspace	Civicspace	0.8.5 (including)	0.8.5 (including)

References

http://securityreason.com/securityalert/1357
http://www.securityfocus.com/archive/1/442704/100/0/threaded
http://www.securityfocus.com/bid/19438
https://exchange.xforce.ibmcloud.com/vulnerabilities/28303
http://securityreason.com/securityalert/1357
http://www.securityfocus.com/archive/1/442704/100/0/threaded
http://www.securityfocus.com/bid/19438
https://exchange.xforce.ibmcloud.com/vulnerabilities/28303