CVE-2006-4206
N/A
N/A
Summary
Cross-site scripting (XSS) vulnerability in calendar.asp in ASPPlayground.NET Forum Advanced Edition 2.4.5 Unicode, and possibly other versions before October 15, 2006, allows remote attackers to inject arbitrary web script or HTML via the calendarID parameter.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.securityfocus.com/archive/1/443035/100/0/threaded
- http://www.securityfocus.com/bid/20335
- http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-4206
- http://securityreason.com/securityalert/1405
- http://www.osvdb.org/29232
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28352
References
- http://www.securityfocus.com/archive/1/443035/100/0/threaded
- http://www.securityfocus.com/bid/20335
- http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-4206
- http://securityreason.com/securityalert/1405
- http://www.osvdb.org/29232
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28352
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.