NVD

Id
61435  
Name
CVE-2006-2750  
Description
Cross-site scripting (XSS) vulnerability in the do_mysql_query function in core.php for Open Searchable Image Catalogue (OSIC) before 0.7.0.1 allows remote attackers to inject arbitrary web scripts or HTML via failed SQL queries, which is reflected in an error message.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2016-12-20  
Published
2006-06-01  
Modified Date
2008-09-05  
Seq
2006-2750  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
317463 61435 CVE-2006-2750 1014  View
317464 61435 CVE-2006-2750 1016178  View
317465 61435 CVE-2006-2750 http://sourceforge.net/forum/forum.php?forum_id=576483  View
317466 61435 CVE-2006-2750 http://svn.sourceforge.net/viewcvs.cgi/osic-win/branches/osic_0-7/osic/core.php?r1=477&r2=631  View
317467 61435 CVE-2006-2750 http://www.seclab.tuwien.ac.at/advisories/TUVSA-0605-001.txt  View
317468 61435 CVE-2006-2750 20060530 Open Searchable Image Catalogue: XSS and SQL Injection Vulnerabilities  View
317469 61435 CVE-2006-2750 18169  View
317470 61435 CVE-2006-2750 osic-core-xss(26966)  View

Related JVN