Vulnerability Details CVE-2006-1779
Cross-site scripting (XSS) vulnerability in login.php in Jeremy Ashcraft Simplog 0.9.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the btag parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.187
EPSS Ranking 95.0%
CVSS Severity
CVSS v2 Score 6.8
References
- http://retrogod.altervista.org/simplog_092_incl_xpl.html
- http://secunia.com/advisories/19628
- http://securitytracker.com/id?1015904
- http://www.osvdb.org/24562
- http://www.securityfocus.com/archive/1/430743/100/0/threaded
- http://www.securityfocus.com/bid/17493
- http://www.vupen.com/english/advisories/2006/1332
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25778
- https://www.exploit-db.com/exploits/1663
- http://retrogod.altervista.org/simplog_092_incl_xpl.html
- http://secunia.com/advisories/19628
- http://securitytracker.com/id?1015904
- http://www.osvdb.org/24562
- http://www.securityfocus.com/archive/1/430743/100/0/threaded
- http://www.securityfocus.com/bid/17493
- http://www.vupen.com/english/advisories/2006/1332
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25778
- https://www.exploit-db.com/exploits/1663