CVE-2006-4660
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2006-4660
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in the RSS Feed module in AOL ICQ Toolbar 1.3 for Internet Explorer (toolbaru.dll) allow remote attackers to process arbitrary web script or HTML in the Feeds interface context via the (1) title and (2) description elements within an item element in an RSS feed.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
ICQ Toolbar 1.3 for IE 多个跨站脚本攻击漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
ICQ Toolbar是一个可安装于IE的工具栏,通过HTML页面提供基于web的配置界面。 ICQ Toolbar没有验证所加载Web页面的位置或来源,因此可以从本地系统或在线配置工具栏。这允许攻击者轻易的拷贝本地保存的options2.html文件的内容并做为html文件上传到任意站点。 每个复选框控件关联到配置设置的方法仅仅是将每个HTML复选框标签的ID属性匹配到期望配置ID的列表。这允许攻击者更改复选框控件的外部表现以掩饰攻击。只要ID属性匹配了相关的配置设置,攻击者就可以向用户浏览器中呈现任意
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2006-4660
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2006-4660
请登录查看更多情报信息。
- Multiple vulnerabilities in ICQ Toolbar 1.3 for Internet Explorer - CXSecurity.comthird-party-advisoryx_refsource_SREASON
- https://nvd.nist.gov/vuln/detail/CVE-2006-4660
Same Patch Batch · n/a · 2006-09-09 · 22 CVEs total
| CVE-2006-4659 | Panda Platinum Internet Security 本地提权漏洞 | |
| CVE-2006-4670 | Photokorn 多个PHP远程文件包含漏洞 | |
| CVE-2006-4669 | Somery 'Include.PHP' PHP远程文件包含漏洞 | |
| CVE-2006-4668 | AckerTodo 'Index.PHP'跨站脚本攻击漏洞 | |
| CVE-2006-4667 | RunCms 多个SQL注入漏洞 | |
| CVE-2006-4666 | WMNews 多个PHP远程文件包含漏洞 | |
| CVE-2006-4665 | MKPortal M1.1 Rc 'index.php'跨站脚本攻击漏洞 | |
| CVE-2006-4664 | Premod Shadow 'Functions_Portal.PHP'PHP远程文件包含漏洞 | |
| CVE-2006-4663 | Linux kernel 安全漏洞 | |
| CVE-2006-4662 | ICQ Pro 2003b 堆溢出漏洞 | |
| CVE-2006-4661 | ICQ Toolbar 1.3 for IE多个安全漏洞 | |
| CVE-2006-4294 | TWiki Viewfile 目录遍历漏洞 | |
| CVE-2006-4658 | Panda Platinum Internet Security 本地提权漏洞 | |
| CVE-2006-4657 | Panda Platinum Internet Security 本地提权漏洞 | |
| CVE-2006-4656 | Web-Provence SL_Site 'Spaw_control.class.PHP'PHP远程文件包含漏洞 | |
| CVE-2006-4655 | X.Org 字符控制函数 缓冲区溢出漏洞 | |
| CVE-2006-4654 | Easy Address Book Web Server 格式串处理漏洞 | |
| CVE-2006-4653 | Amazing Little Picture Poll 敏感信息泄露漏洞 | |
| CVE-2006-4652 | Amazing Little Picture Poll 'lp_admin.php'认证绕过漏洞 | |
| CVE-2006-4651 | PHP Download 'Download.PHP'目录遍历漏洞 |
Showing top 20 of 22 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8276
bettercap MySQL Server mysql_server.go integer coercion - CVE-2026-8275
bettercap zerogod IPP Service zerogod_ipp_primitives.go ippR - CVE-2026-8270
Open5GS SMF ogs_nas_parse_qos_rules denial of service - CVE-2026-8269
Open5GS SMF smf_nsmf_handle_create_sm_context denial of serv - CVE-2026-8268
Open5GS SMF OpenAPI_list_create denial of service
V. Comments for CVE-2006-4660
No comments yet