CVE-2006-5074 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2006-5074

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Cross-site scripting (XSS) vulnerability in home.php in PHP Invoice 2.2 allows remote attackers to inject arbitrary web script or HTML via the alert parameter.

Affected Software

Name	Vendor	Start Version	End Version
Php_invoice	Php_invoice	2.2 (including)	2.2 (including)

References

http://secunia.com/advisories/22123
http://securityreason.com/securityalert/1652
http://www.securityfocus.com/archive/1/447015/100/0/threaded
http://www.securityfocus.com/bid/20221
http://www.vupen.com/english/advisories/2006/3795
http://secunia.com/advisories/22123
http://securityreason.com/securityalert/1652
http://www.securityfocus.com/archive/1/447015/100/0/threaded
http://www.securityfocus.com/bid/20221
http://www.vupen.com/english/advisories/2006/3795