CVE-2006-2751
Summary
| CVE | CVE-2006-2751 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2006-06-01 10:02:00 UTC |
| Updated | 2018-10-18 16:41:00 UTC |
| Description | Cross-site scripting (XSS) vulnerability in Open Searchable Image Catalogue (OSIC) 0.7.0.1 and earlier allows remote attackers to inject arbitrary web scripts or HTML via the item_list parameter in search.php. |
Risk And Classification
Problem Types: NVD-CWE-Other
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Open Searchable Image Catalogue | Open Searchable Image Catalogue | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| www.seclab.tuwien.ac.at/advisories/TUVSA-0605-001.txt | MISC | www.seclab.tuwien.ac.at | Vendor Advisory |
| IBM X-Force Exchange | XF | exchange.xforce.ibmcloud.com | |
| Page not found - SourceForge.net | MISC | sourceforge.net | |
| Open Searchable Image Catalogue: XSS and SQL Injection Vulnerabilities - CXSecurity.com | SREASON | securityreason.com | |
| SecurityFocus | BUGTRAQ | www.securityfocus.com | |
| 404 Not Found | MISC | svn.sourceforge.net | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.