CVE-2006-7023 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2006-7023

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Multiple cross-site scripting (XSS) vulnerabilities in fx-APP 0.0.8.1 allow remote attackers to inject arbitrary HTML or web script via (1) the search box, and the (2) url, (3) website, (4) comment, and (5) signature fields in the profile, and possibly (6) a menu item.

Affected Software

Name	Vendor	Start Version	End Version
Fx-app	Fx-app	0.0.8.1 (including)	0.0.8.1 (including)

References

http://securityreason.com/securityalert/2251
http://www.securityfocus.com/archive/1/436691/30/4500/threaded
http://www.securityfocus.com/archive/1/469825/100/100/threaded
http://www.securityfocus.com/bid/18361
https://exchange.xforce.ibmcloud.com/vulnerabilities/27167
http://securityreason.com/securityalert/2251
http://www.securityfocus.com/archive/1/436691/30/4500/threaded
http://www.securityfocus.com/archive/1/469825/100/100/threaded
http://www.securityfocus.com/bid/18361
https://exchange.xforce.ibmcloud.com/vulnerabilities/27167