CVE-2006-1428

Published: Mar 28, 2006Modified: Apr 16, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

Multiple cross-site scripting (XSS) vulnerabilities in phpCOIN 1.2.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the fs parameter to (1) mod.php or (2) mod_print.php.

Affected (5)

Products: Coinsoft Technologies: Phpcoin

Coinsoft Technologies

1 product

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Coinsoft Technologies Phpcoin	Version 1.1.0
Coinsoft Technologies Phpcoin	Version 1.1.1
Coinsoft Technologies Phpcoin	Version 1.2.0
Coinsoft Technologies Phpcoin	Version 1.2.1
Coinsoft Technologies Phpcoin	Version 1.2.2

References (14)

http://pridels0.blogspot.com/2006/03/phpcoin-v122-xss-vuln.html

Source: cve@mitre.org

http://secunia.com/advisories/19419

Source: cve@mitre.org

Vendor Advisory

http://www.osvdb.org/24188

Source: cve@mitre.org

http://www.osvdb.org/24189

Source: cve@mitre.org

http://www.securityfocus.com/bid/17279

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2006/1129

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/25492

Source: cve@mitre.org

http://pridels0.blogspot.com/2006/03/phpcoin-v122-xss-vuln.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/19419

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.osvdb.org/24188

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.osvdb.org/24189

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/17279

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2006/1129

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/25492

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.