CVE-2006-1157

Published: Mar 12, 2006Modified: Apr 16, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

Cross-site scripting (XSS) vulnerability in Vz Scripts ADP Forum 2.0.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the Subject field (possibly messaggio parameter) when posting a new message in post.php.

Affected (1)

Products: Adp: Adp Forum

Adp

1 product

Adp Forum

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Adp Adp Forum	All versions

References (12)

http://biyosecurity.be/bugs/adpforum2.txt

Source: cve@mitre.org

Exploit

http://www.osvdb.org/23961

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/427171/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/17047

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2006/0901

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/25189

Source: cve@mitre.org

http://biyosecurity.be/bugs/adpforum2.txt