CVE-2006-5299

Multiple cross-site scripting (XSS) vulnerabilities in index.php in Gcontact 0.6.5 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Score4.3
Access VectorNETWORK
Access ComplexityMEDIUM
AuthenticationNONE
Confidentiality ImpactNONE
Integrity ImpactPARTIAL
Availability ImpactNONE
Published2006-10-17 11:07:00.000-04
Last Modified2018-10-17 05:42:03.000-04

Vulnerable Software List

VendorProductVersions
Gcontact Gcontact 0.6.5

References

SourceLink
SREASON1725
MISChttp://www.armorize.com/advisory.php?Keyword=Armorize-ADV-2006-0005
BUGTRAQ20061014 Multiple XSS Vulnerability in Gcontact
BID20530
XFgcontact-index-xss(29600)