Security Advisory

CVE-2006-7061

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2007-02-24 01:00:00

Last updated 2024-08-07 20:50:06

Assigner mitre

State PUBLISHED

Description

Scriptsez.net E-Dating System stores data files with predictable names under the web document root with insufficient access control, which allows remote attackers to read private messages and leverage them for cross-site scripting (XSS) attacks.

← Browse all CVEs View on cve.org ↗