Unrated severityNVD Advisory· Published Feb 15, 2006· Updated Apr 16, 2026

CVE-2006-0699

Description

Cross-site scripting (XSS) vulnerability in search.php in QWikiWiki 1.5, and possibly 1.5.1 and other versions, allows remote attackers to inject arbitrary web script or HTML via the query parameter.

Affected products

David Barrett/Qwikiwiki8 versions
cpe:2.3:a:david_barrett:qwikiwiki:1.0:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:david_barrett:qwikiwiki:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:david_barrett:qwikiwiki:1.2:*:*:*:*:*:*:*
- cpe:2.3:a:david_barrett:qwikiwiki:1.3:*:*:*:*:*:*:*
- cpe:2.3:a:david_barrett:qwikiwiki:1.4:*:*:*:*:*:*:*
- cpe:2.3:a:david_barrett:qwikiwiki:1.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:david_barrett:qwikiwiki:1.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:david_barrett:qwikiwiki:1.5:*:*:*:*:*:*:*
- cpe:2.3:a:david_barrett:qwikiwiki:1.5.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/18814nvdVendor Advisory
insecurity.altervista.org/index.phpnvd
www.securityfocus.com/bid/16638nvd
www.vupen.com/english/advisories/2006/0562nvd
exchange.xforce.ibmcloud.com/vulnerabilities/24669nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000