CVE-2006-1295

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2006-1295

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2006-1295.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2006-1295

Downstream

DEBIAN-CVE-2006-1295

Published

2006-03-19T23:02:00Z

Modified

2026-04-10T03:38:23.486392Z

Summary

[none]

Details

Cross-site scripting (XSS) vulnerability in recherche.php3 in SPIP 1.8.2-g allows remote attackers to inject arbitrary web script or HTML via the recherche parameter.

References

http://www.zone-h.fr/advisories/read/id=1105
http://zone.spip.org/trac/spip-zone/changeset/1672
http://www.securityfocus.com/bid/17130
http://www.silitix.com/spip-xss.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/25389

CVE-2006-1295

Affected packages