Unrated severityNVD Advisory· Published Jan 4, 2006· Updated Apr 16, 2026

CVE-2006-0078

Description

Multiple cross-site scripting (XSS) vulnerabilities in B-net Software 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) name and (2) shout variables to (a) shout.php, or the (3) title and (4) message variables to (b) guestbook.php.

Affected products

Haddad Said/B Net Software
cpe:2.3:a:haddad_said:b-net_software:1.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

evuln.com/vulns/10/summary.htmlnvdVendor Advisory
secunia.com/advisories/18271nvdVendor Advisory
securityreason.com/securityalert/316nvd
sourceforge.net/project/shownotes.phpnvd
www.osvdb.org/22190nvd
www.osvdb.org/22191nvd
www.securityfocus.com/archive/1/420673/100/0/threadednvd
www.securityfocus.com/archive/1/444320/100/0/threadednvd
www.securityfocus.com/bid/16114nvd
www.vupen.com/english/advisories/2006/0018nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000