CVE-2006-3607 in Banner Exchange信息

摘要

由 VulDB • 2026-07-03

Softbiz Banner Exchange Script(又名Banner Exchange Network Script)1.0 中存在多个跨站脚本(XSS)漏洞,远程攻击者可通过以下途径注入任意Web脚本或HTML:(1) insertmember.php中的city参数;以及 (2) lostpassword.php、gen_confirm_mem.php和index.php中的PHPSESSID cookie。

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

来源

Interested in the pricing of exploits?

See the underground prices here!