CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2006-1436

MEDIUM
4.3
CVSS Severity Score
EPSS Score0.1670%
EPSS Percentile5.05th
Published2006年4月15日
Last Modified2026年4月16日

Vulnerability Description

Multiple cross-site scripting (XSS) vulnerabilities in UPOINT @1 Event Publisher allow remote attackers to inject arbitrary web script or HTML via the (1) Event, (2) Description, (3) Time, (4) Website, and (5) Public Remarks fields to (a) eventpublisher_admin.htm and (b) eventpublisher_usersubmit.htm.

Affected Platforms (CPE)

📦
Upoint

At1 Event Publisher

= 2003-12-18

References & Advisories

🔗 http://osvdb.org/ref/24/24236-upoint.txt
🔗 http://secunia.com/advisories/19727
🔗 http://www.osvdb.org/24235
🔗 http://www.osvdb.org/24236
🔗 http://www.securityfocus.com/bid/17646
🔗 http://osvdb.org/ref/24/24236-upoint.txt
🔗 http://secunia.com/advisories/19727
🔗 http://www.osvdb.org/24235

相關漏洞威脅

CVE-2006-502510.0

Multiple unspecified vulnerabilities in Paisterist Simple HTTP Scanner (sHTTPScanner) before 0.2 have unknown impact and attack ve...

CVE-2006-160410.0

Unspecified vulnerability in Exponent CMS before 0.96.5 RC 1 has unknown impact and remote attack vectors related to variables tha...

CVE-2006-446110.0

Paessler IPCheck Server Monitor before 5.3.3.639/640 does not properly implement a "list of acceptable host IP addresses in the pr...

CVE-2006-055910.0

Format string vulnerability in the SMTP server for McAfee WebShield 4.5 MR2 and earlier allows remote attackers to execute arbitra...