CyberSec.Space Logo
CVEブラウザに戻る

CVE-2006-0562

MEDIUM
4.3
CVSS Severity Score
EPSS Score0.0950%
EPSS Percentile23.60th
Published2006年2月6日
Last Modified2026年4月16日

Vulnerability Description

Cross-site scripting (XSS) vulnerability in problem.php in PluggedOut Blog 1.9.9c allows remote attackers to inject arbitrary web script or HTML via the data parameter.

Affected Platforms (CPE)

📦
Pluggedout

Pluggedout Blog

= 1.9.9c

References & Advisories

🔗 http://attrition.org/pipermail/vim/2006-February/000530.html
🔗 http://hamid.ir/security/pluggedoutblog.txt
🔗 http://secunia.com/advisories/18726
🔗 http://securitytracker.com/id?1015586
🔗 http://www.osvdb.org/22927
🔗 http://www.securityfocus.com/archive/1/423948/100/0/threaded
🔗 http://www.vupen.com/english/advisories/2006/0440
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/24482

関連する脆弱性情報

CVE-2005-40547.5

SQL injection vulnerability in index.php in PluggedOut Blog 1.9.5 and earlier allows remote attackers to execute arbitrary SQL com...

CVE-2006-05637.5

SQL injection vulnerability in exec.php in PluggedOut Blog 1.9.9c allows remote attackers to execute arbitrary SQL commands via th...

CVE-2006-610210.0

Integer overflow in the ProcDbeGetVisualInfo function in the DBE extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X ser...

CVE-2006-502510.0

Multiple unspecified vulnerabilities in Paisterist Simple HTTP Scanner (sHTTPScanner) before 0.2 have unknown impact and attack ve...