Vulnonym.com

CVE-2006-6082 - Asthenic Folders

Description

Multiple cross-site scripting (XSS) vulnerabilities in CreaScripts Creadirectory allow remote attackers to inject arbitrary web script or HTML via the (1) cat parameter to addlisting.asp or the (2) search parameter to search.asp.

Reference

http://s-a-p.ca/index.php?page=OurAdvisories&id=54 http://www.securityfocus.com/bid/21230 http://secunia.com/advisories/23067 http://securityreason.com/securityalert/1907 http://www.vupen.com/english/advisories/2006/4665 https://exchange.xforce.ibmcloud.com/vulnerabilities/30473 http://www.securityfocus.com/archive/1/452241/100/0/threaded