Unrated severityNVD Advisory· Published Mar 14, 2006· Updated Apr 16, 2026

CVE-2006-1202

Description

Multiple cross-site scripting (XSS) vulnerabilities in textfileBB 1.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) mess and (2) user parameters in messanger.php, possibly requiring a URL encoded value.

Affected products

Jcink.com/Textfilebb
cpe:2.3:a:jcink.com:textfilebb:1.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/19149nvdVendor Advisory
notlegal.ws/textfilebbmessanger.txtnvdURL Repurposed
securitytracker.com/idnvd
www.securityfocus.com/archive/1/427081/100/0/threadednvd
www.securityfocus.com/bid/17029nvd
www.vupen.com/english/advisories/2006/0897nvd
exchange.xforce.ibmcloud.com/vulnerabilities/25091nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000