VYPR
← All advisories
Unrated severityNVD Advisory· Published Jun 12, 2006· Updated Apr 16, 2026

CVE-2006-2956

CVE-2006-2956

Description

Multiple cross-site scripting (XSS) vulnerabilities in i.List 1.5 beta and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) searchword parameter to search.php or (2) siteurl parameter to add.php.

Affected products

1
  • Skoom/I.list
    cpe:2.3:a:skoom:i.list:*:*:*:*:*:*:*:*
    Range: <=1.5_beta

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

5

News mentions

0

No linked articles in our index yet.