CVE-2006-4881 - Vulnerability Details - OpenCVE

Multiple cross-site scripting (XSS) vulnerabilities in David Bennett PHP-Post (PHPp) 1.0 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the replyuser parameter in (a) pm.php; (2) the txt_jumpto parameter in (b) dropdown.php; the (3) txt_error and (4) txt_templatenotexist parameters in (c) template.php; the (5) split parameter in certain files, as demonstrated by (d) editprofile.php, (e) search.php, (f) index.php, and (g) pm.php; and the (6) txt_login parameter in (h) loginline.php; and allow remote authenticated users to inject arbitrary web script or HTML via the (7) txt_logout parameter in (i) loginline.php.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
David Bennett	Php-post

Configuration 1 [-]

cpe:2.3:a:david_bennett:php-post:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://secunia.com/advisories/22014
http://securityreason.com/securityalert/1607
http://www.osvdb.org/28968
http://www.osvdb.org/28969
http://www.osvdb.org/28970
http://www.osvdb.org/28971
http://www.osvdb.org/28972
http://www.securityfocus.com/archive/1/446318/100/0/threaded
http://www.securityfocus.com/bid/20061
http://www.vupen.com/english/advisories/2006/3688
https://exchange.xforce.ibmcloud.com/vulnerabilities/29017

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2006-09-19T21:00:00

Updated: 2024-08-07T19:32:22.226Z

Reserved: 2006-09-19T00:00:00

Link: CVE-2006-4881

Vulnrichment

No data.

NVD

Status : Modified

Published: 2006-09-19T21:07:00.000

Modified: 2024-11-21T00:16:59.913

Link: CVE-2006-4881

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-09-16T00:00:00", "descriptions": [{"lang": "en", "value": "Multiple cross-site scripting (XSS) vulnerabilities in David Bennett PHP-Post (PHPp) 1.0 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the replyuser parameter in (a) pm.php; (2) the txt_jumpto parameter in (b) dropdown.php; the (3) txt_error and (4) txt_templatenotexist parameters in (c) template.php; the (5) split parameter in certain files, as demonstrated by (d) editprofile.php, (e) search.php, (f) index.php, and (g) pm.php; and the (6) txt_login parameter in (h) loginline.php; and allow remote authenticated users to inject arbitrary web script or HTML via the (7) txt_logout parameter in (i) loginline.php."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-17T20:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "28969", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/28969"}, {"name": "20061", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/20061"}, {"name": "ADV-2006-3688", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/3688"}, {"name": "phppost-multiple-scripts-xss(29017)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29017"}, {"name": "28972", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/28972"}, {"name": "28971", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/28971"}, {"name": "1607", "tags": ["third-party-advisory", "x_refsource_SREASON"], "url": "http://securityreason.com/securityalert/1607"}, {"name": "22014", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/22014"}, {"name": "20060916 PHP-Post Multiple Input Validation Vulnerabilities", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/446318/100/0/threaded"}, {"name": "28968", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/28968"}, {"name": "28970", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/28970"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-4881", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple cross-site scripting (XSS) vulnerabilities in David Bennett PHP-Post (PHPp) 1.0 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the replyuser parameter in (a) pm.php; (2) the txt_jumpto parameter in (b) dropdown.php; the (3) txt_error and (4) txt_templatenotexist parameters in (c) template.php; the (5) split parameter in certain files, as demonstrated by (d) editprofile.php, (e) search.php, (f) index.php, and (g) pm.php; and the (6) txt_login parameter in (h) loginline.php; and allow remote authenticated users to inject arbitrary web script or HTML via the (7) txt_logout parameter in (i) loginline.php."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "28969", "refsource": "OSVDB", "url": "http://www.osvdb.org/28969"}, {"name": "20061", "refsource": "BID", "url": "http://www.securityfocus.com/bid/20061"}, {"name": "ADV-2006-3688", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/3688"}, {"name": "phppost-multiple-scripts-xss(29017)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29017"}, {"name": "28972", "refsource": "OSVDB", "url": "http://www.osvdb.org/28972"}, {"name": "28971", "refsource": "OSVDB", "url": "http://www.osvdb.org/28971"}, {"name": "1607", "refsource": "SREASON", "url": "http://securityreason.com/securityalert/1607"}, {"name": "22014", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/22014"}, {"name": "20060916 PHP-Post Multiple Input Validation Vulnerabilities", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/446318/100/0/threaded"}, {"name": "28968", "refsource": "OSVDB", "url": "http://www.osvdb.org/28968"}, {"name": "28970", "refsource": "OSVDB", "url": "http://www.osvdb.org/28970"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T19:32:22.226Z"}, "title": "CVE Program Container", "references": [{"name": "28969", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/28969"}, {"name": "20061", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/20061"}, {"name": "ADV-2006-3688", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2006/3688"}, {"name": "phppost-multiple-scripts-xss(29017)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29017"}, {"name": "28972", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/28972"}, {"name": "28971", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/28971"}, {"name": "1607", "tags": ["third-party-advisory", "x_refsource_SREASON", "x_transferred"], "url": "http://securityreason.com/securityalert/1607"}, {"name": "22014", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/22014"}, {"name": "20060916 PHP-Post Multiple Input Validation Vulnerabilities", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/446318/100/0/threaded"}, {"name": "28968", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/28968"}, {"name": "28970", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/28970"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-4881", "datePublished": "2006-09-19T21:00:00", "dateReserved": "2006-09-19T00:00:00", "dateUpdated": "2024-08-07T19:32:22.226Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:david_bennett:php-post:*:*:*:*:*:*:*:*", "matchCriteriaId": "70FA6839-10EF-409D-AE8E-31F1DD908165", "versionEndIncluding": "1.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Multiple cross-site scripting (XSS) vulnerabilities in David Bennett PHP-Post (PHPp) 1.0 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the replyuser parameter in (a) pm.php; (2) the txt_jumpto parameter in (b) dropdown.php; the (3) txt_error and (4) txt_templatenotexist parameters in (c) template.php; the (5) split parameter in certain files, as demonstrated by (d) editprofile.php, (e) search.php, (f) index.php, and (g) pm.php; and the (6) txt_login parameter in (h) loginline.php; and allow remote authenticated users to inject arbitrary web script or HTML via the (7) txt_logout parameter in (i) loginline.php."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades de secuencias de comandos en sitios cruzados (XSS) en David Bennett PHP-Post (PHPp) 1.0 y anteriores permiten a atacantes remotos inyectar secuencias de comandos web o HTML de su elecci\u00f3n v\u00eda (1) el par\u00e1metro replyuser en (a) pm.php; (2) el par\u00e1metro txt_jumpto en (b) dropdown.php; los par\u00e1metros (3) txt_error y (4) txt_templatenotexist en (c) template.php; (5) el par\u00e1metro split en ciertos ficheros, como ha sido demostrado en (d) editprofile.php, (e) search.php, (f) index.php, y (g) pm.php; (6) y el par\u00e1metro txt_login en (h) loginline.php; adem\u00e1s permite a usuarios remotos autenticados inyectar secuencias de comandos web o HTML de su elecci\u00f3n v\u00eda (7) el par\u00e1metro txt_logout en (i) loginline.php."}], "id": "CVE-2006-4881", "lastModified": "2024-11-21T00:16:59.913", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2006-09-19T21:07:00.000", "references": [{"source": "cve@mitre.org", "url": "http://secunia.com/advisories/22014"}, {"source": "cve@mitre.org", "url": "http://securityreason.com/securityalert/1607"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/28968"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/28969"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/28970"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/28971"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/28972"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/446318/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/20061"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2006/3688"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29017"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/22014"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securityreason.com/securityalert/1607"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.osvdb.org/28968"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.osvdb.org/28969"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.osvdb.org/28970"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.osvdb.org/28971"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.osvdb.org/28972"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/446318/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/20061"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2006/3688"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29017"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}