PT-2006-5802 · Elog · Elog

Tilman Koschnick

Published

2006-09-28

Updated

2017-07-20

CVE-2006-5063

CVSS v2.0

5.1

Medium

Vector

AV:N/AC:H/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Elog version 2.6.1

Description A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML by editing log entries in HTML mode.

Recommendations For Elog version 2.6.1, update to a version that fixes this issue to prevent remote attackers from injecting arbitrary web script or HTML.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-5063

DSA-1242-1

Affected Products

Elog

PT-2006-5802 · Elog · Elog

CVE-2006-5063

Related Identifiers

Affected Products

References · 7