CVE-2006-5524 | SynScan

Vulnerability Database

289,784

Total vulnerabilities in the database

CVE-2006-5524

Cross-site scripting (XSS) vulnerability in index.php in phplist 2.10.2 allows remote attackers to inject arbitrary web script or HTML via the p parameter. NOTE: This issue might overlap CVE-2006-5321.

Published: Oct 26, 2006
Updated: Apr 13, 2023
CVE: CVE-2006-5524
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
phplist / phplist	2.10.2	2.10.2.x