Security Advisory

CVE-2006-6936

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2007-01-17 00:00:00

Last updated 2024-08-07 20:42:07

Assigner mitre

State PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in Xtreme ASP Photo Gallery allows remote attackers to inject arbitrary HTML or web script via (1) the catname parameter to displaypic.asp or (2) the search field. NOTE: vector 1 likely overlaps CVE-2006-3032.

← Browse all CVEs View on cve.org ↗