Cross-Site Scripting Vulnerability in CuteNews by CuteNews Team
CVE-2006-3661

Currently unrated

Key Information:

Vendor: CutePHP
Status: Cutenews
Vendor: CVE Published:; 18 July 2006

What is CVE-2006-3661?

A cross-site scripting (XSS) flaw exists in Index.PHP of CuteNews version 1.4.5, allowing remote attackers to inject potentially harmful web scripts or HTML. This vulnerability can be exploited through various vectors, enabling unauthorized access and control over affected systems. Users of this software version should evaluate their exposure to ensure their systems remain secure.

References

http://www.virangar.org

x_refsource_MISC

http://www.securityfocus.com/bid/18918

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jul 18, 2006

CutePHP

What is CVE-2006-3661?

References

Timeline