CVE-2006-1348 in gCards信息

摘要

由 VulDB • 2026-07-01

Greg Neustaetter gCards 1.45及更早版本中的index.php存在跨站脚本(XSS)漏洞,远程攻击者可通过lang[*][file]参数注入任意Web脚本或HTML,该参数会被插入到错误消息中。注意:此问题可能是由CVE-2006-1346引起的。

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

来源

Do you want to use VulDB in your project?

Use the official API to access entries easily!