CVE-2006-4593
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2006-4593
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Cross-site scripting (XSS) vulnerability in index.php in SoftBB 0.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the page parameter.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
SoftBB 'index.php' 跨站脚本攻击漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
SoftBB是一套基于Web的论坛程序。 SoftBB v0.1中存在多个输入验证错误,如下: 1) 在SQL查询时没有正确的验证对/addmembre.php文件中groupe参数及/moveto.php文件中select参数的输入,允许攻击者执行SQL注入攻击。 2) 在PHP脚本中存储之前没有正确过滤对admin/save_opt.php中多个参数的输入,允许攻击者执行任意PHP代码。成功攻击可能要求管理员权限。 3) 对index.php中page参数的输入没有正确的处理空的或无效的参数,攻击者可
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2006-4593
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2006-4593
Please Login to view more intelligence information
Same Patch Batch · n/a · 2006-09-06 · 41 CVEs total
| CVE-2006-4553 | Mambo/Joomla 'plugin.class.php'脚本 远程文件包含漏洞 | |
| CVE-2006-4544 | ExBB 多个PHP远程文件包含漏洞 | |
| CVE-2006-4545 | ModuleBased CMS 多个远程PHP文件包含漏洞 | |
| CVE-2006-4546 | Lyris ListManager 特权提升漏洞 | |
| CVE-2006-4547 | Lyris ListManager 敏感信息泄露漏洞 | |
| CVE-2006-4548 | e107 'ibrowser.php'执行任意PHP代码 | |
| CVE-2006-4549 | CHXO Feedsplitter 'showsource'函数输入验证漏洞 | |
| CVE-2006-4550 | CHXO Feedsplitter 目录遍历漏洞 | |
| CVE-2006-4551 | CHXO Feedsplitter Eval注入漏洞 | |
| CVE-2006-4552 | CHXO Feedsplitter 跨站脚本攻击漏洞 | |
| CVE-2006-4543 | HLstats 'Index.PHP' 跨站脚本攻击漏洞 | |
| CVE-2006-4554 | Compression Plus 栈溢出漏洞 | |
| CVE-2006-4555 | CR64Loader 缓冲区溢出漏洞 | |
| CVE-2006-4556 | Mambo and Joomla!'index.php' PHP远程文件包含漏洞 | |
| CVE-2006-4557 | Bob Jewell Discloser 'plugins/plugins.php' PHP远程文件包含漏洞 | |
| CVE-2006-4558 | DeluxeBB 'newpost.php'任意PHP代码执行漏洞 | |
| CVE-2006-4559 | Yet Another Community System (YACS) CMS 多个PHP远程文件包含漏洞 | |
| CVE-2006-4560 | Windows XP SP2 Internet Explorer 任意脚本执行漏洞 | |
| CVE-2006-4561 | Mozilla Firefox 任意脚本执行漏洞 | |
| CVE-2006-4562 | Symantec Gateway Security 安全漏洞 |
Showing top 20 of 41 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8258
Squirrel sqstdstring.cpp validate_format stack-based overflo - CVE-2026-8252
Open5GS SMF smf_nsmf_handle_create_data_in_hsmf null pointer - CVE-2026-8251
Open5GS SMF npcf-handler.c update_authorized_pcc_rule_and_qo - CVE-2026-8250
Open5GS SMF n4-build.c smf_n4_build_qos_flow_to_modify_list - CVE-2026-8249
Open5GS SMF npcf-handler.c update_authorized_pcc_rule_and_qo
V. Comments for CVE-2006-4593
No comments yet