CVE-2006-4985
published 2006-09-26CVE-2006-4985: Multiple cross-site scripting (XSS) vulnerabilities in Grayscale BandSite CMS allow remote attackers to inject arbitrary web script or HTML via (1) the…
PriorityP419medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EXPLOIT
EPSS
1.63%
73.2th percentile
Multiple cross-site scripting (XSS) vulnerabilities in Grayscale BandSite CMS allow remote attackers to inject arbitrary web script or HTML via (1) the max_file_size_purdy parameter in adminpanel/includes/helpfiles/help_mp3.php, (2) the message_text parameter in adminpanel/includes/mailinglist/sendemail.php, (3) the this_year parameter in includes/footer.php, and the band parameter in (4) adminpanel/includes/helpfiles/help_news.php (5) adminpanel/includes/helpfiles/help_merch.php, (6) adminpanel/includes/header.php, and (7) adminpanel/login_header.php; and includes/content/ files including (8) bio_content.php, (9) gbook_content.php, (10) interview_content.php, (11) links_content.php, (12) lyrics_content.php, (13) member_content.php, (14) merch_content.php, (15) mp3_content.php, (16) news_content.php, (17) pastshows_content.php, (18) photo_content.php, (19) releases_content.php, (20) reviews_content.php, (21) shows_content.php, and (22) signgbook_content.php.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| grayscale | bandsite_cms | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
BandSite CMS 1.1 - 'pastshows_content.php' Cross-Site Scripting
exploitdb·2006-09-21
CVE-2006-4985 BandSite CMS 1.1 - 'pastshows_content.php' Cross-Site Scripting
BandSite CMS 1.1 - 'pastshows_content.php' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/20137/info
Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data.
These issues may allow an attacker to access sensitive information, execute arbitrary server-side script code in the context of the affected webserver, or execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This could help the attacker steal cookie-based authentication credentials; other attacks are possible.
Version 1.1.0 is vulnerable; other versions may also be affected.
http://www.example.com/includes/content/pastshows_content.php?the_band=alert(document.cookie);
Exploit-DB
BandSite CMS 1.1 - 'reviews_content.php' Cross-Site Scripting
exploitdb·2006-09-21
CVE-2006-4985 BandSite CMS 1.1 - 'reviews_content.php' Cross-Site Scripting
BandSite CMS 1.1 - 'reviews_content.php' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/20137/info
Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data.
These issues may allow an attacker to access sensitive information, execute arbitrary server-side script code in the context of the affected webserver, or execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This could help the attacker steal cookie-based authentication credentials; other attacks are possible.
Version 1.1.0 is vulnerable; other versions may also be affected.
http://www.example.com/includes/content/reviews_content.php?the_band=alert(document.cookie);
Exploit-DB
BandSite CMS 1.1 - 'gbook_content.php' Cross-Site Scripting
exploitdb·2006-09-21
CVE-2006-4985 BandSite CMS 1.1 - 'gbook_content.php' Cross-Site Scripting
BandSite CMS 1.1 - 'gbook_content.php' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/20137/info
Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data.
These issues may allow an attacker to access sensitive information, execute arbitrary server-side script code in the context of the affected webserver, or execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This could help the attacker steal cookie-based authentication credentials; other attacks are possible.
Version 1.1.0 is vulnerable; other versions may also be affected.
http://www.example.com/includes/content/gbook_content.php?the_band=alert(document.cookie);
Exploit-DB
BandSite CMS 1.1 - 'merch_content.php' Cross-Site Scripting
exploitdb·2006-09-21
CVE-2006-4985 BandSite CMS 1.1 - 'merch_content.php' Cross-Site Scripting
BandSite CMS 1.1 - 'merch_content.php' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/20137/info
Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data.
These issues may allow an attacker to access sensitive information, execute arbitrary server-side script code in the context of the affected webserver, or execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This could help the attacker steal cookie-based authentication credentials; other attacks are possible.
Version 1.1.0 is vulnerable; other versions may also be affected.
http://www.example.com/includes/content/merch_content.php?the_band=alert(document.cookie);
Exploit-DB
BandSite CMS 1.1 - 'login_header.php' Cross-Site Scripting
exploitdb·2006-09-21
CVE-2006-4985 BandSite CMS 1.1 - 'login_header.php' Cross-Site Scripting
BandSite CMS 1.1 - 'login_header.php' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/20137/info
Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data.
These issues may allow an attacker to access sensitive information, execute arbitrary server-side script code in the context of the affected webserver, or execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This could help the attacker steal cookie-based authentication credentials; other attacks are possible.
Version 1.1.0 is vulnerable; other versions may also be affected.
http://www.example.com/adminpanel/login_header.php?the_band=alert(document.cookie);
Exploit-DB
BandSite CMS 1.1 - 'help_merch.php' Cross-Site Scripting
exploitdb·2006-09-21
CVE-2006-4985 BandSite CMS 1.1 - 'help_merch.php' Cross-Site Scripting
BandSite CMS 1.1 - 'help_merch.php' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/20137/info
Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data.
These issues may allow an attacker to access sensitive information, execute arbitrary server-side script code in the context of the affected webserver, or execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This could help the attacker steal cookie-based authentication credentials; other attacks are possible.
Version 1.1.0 is vulnerable; other versions may also be affected.
http://www.example.com/adminpanel/includes/helpfiles/help_merch.php?the_band=alert(document.cookie);
Exploit-DB
BandSite CMS 1.1 - 'bio_content.php' Cross-Site Scripting
exploitdb·2006-09-21
CVE-2006-4985 BandSite CMS 1.1 - 'bio_content.php' Cross-Site Scripting
BandSite CMS 1.1 - 'bio_content.php' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/20137/info
Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data.
These issues may allow an attacker to access sensitive information, execute arbitrary server-side script code in the context of the affected webserver, or execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This could help the attacker steal cookie-based authentication credentials; other attacks are possible.
Version 1.1.0 is vulnerable; other versions may also be affected.
http://www.example.com/includes/content/bio_content.php?the_band=alert(document.cookie);
Exploit-DB
BandSite CMS 1.1 - 'news_content.php' Cross-Site Scripting
exploitdb·2006-09-21
CVE-2006-4985 BandSite CMS 1.1 - 'news_content.php' Cross-Site Scripting
BandSite CMS 1.1 - 'news_content.php' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/20137/info
Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data.
These issues may allow an attacker to access sensitive information, execute arbitrary server-side script code in the context of the affected webserver, or execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This could help the attacker steal cookie-based authentication credentials; other attacks are possible.
Version 1.1.0 is vulnerable; other versions may also be affected.
http://www.example.com/includes/content/news_content.php?the_band=alert(document.cookie);
Exploit-DB
BandSite CMS 1.1 - 'shows_content.php' Cross-Site Scripting
exploitdb·2006-09-21
CVE-2006-4985 BandSite CMS 1.1 - 'shows_content.php' Cross-Site Scripting
BandSite CMS 1.1 - 'shows_content.php' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/20137/info
Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data.
These issues may allow an attacker to access sensitive information, execute arbitrary server-side script code in the context of the affected webserver, or execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This could help the attacker steal cookie-based authentication credentials; other attacks are possible.
Version 1.1.0 is vulnerable; other versions may also be affected.
http://www.example.com/includes/content/shows_content.php?the_band=alert(document.cookie);
Exploit-DB
BandSite CMS 1.1 - 'interview_content.php' Cross-Site Scripting
exploitdb·2006-09-21
CVE-2006-4985 BandSite CMS 1.1 - 'interview_content.php' Cross-Site Scripting
BandSite CMS 1.1 - 'interview_content.php' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/20137/info
Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data.
These issues may allow an attacker to access sensitive information, execute arbitrary server-side script code in the context of the affected webserver, or execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This could help the attacker steal cookie-based authentication credentials; other attacks are possible.
Version 1.1.0 is vulnerable; other versions may also be affected.
http://www.example.com/includes/content/interview_content.php?the_band=alert(document.cookie);
Exploit-DB
BandSite CMS 1.1 - 'lyrics_content.php' Cross-Site Scripting
exploitdb·2006-09-21
CVE-2006-4985 BandSite CMS 1.1 - 'lyrics_content.php' Cross-Site Scripting
BandSite CMS 1.1 - 'lyrics_content.php' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/20137/info
Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data.
These issues may allow an attacker to access sensitive information, execute arbitrary server-side script code in the context of the affected webserver, or execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This could help the attacker steal cookie-based authentication credentials; other attacks are possible.
Version 1.1.0 is vulnerable; other versions may also be affected.
http://www.example.com/includes/content/lyrics_content.php?the_band=alert(document.cookie);
Exploit-DB
BandSite CMS 1.1 - 'member_content.php' Cross-Site Scripting
exploitdb·2006-09-21
CVE-2006-4985 BandSite CMS 1.1 - 'member_content.php' Cross-Site Scripting
BandSite CMS 1.1 - 'member_content.php' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/20137/info
Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data.
These issues may allow an attacker to access sensitive information, execute arbitrary server-side script code in the context of the affected webserver, or execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This could help the attacker steal cookie-based authentication credentials; other attacks are possible.
Version 1.1.0 is vulnerable; other versions may also be affected.
http://www.example.com/includes/content/member_content.php?the_band=alert(document.cookie);
Exploit-DB
BandSite CMS 1.1 - 'sendemail.php' Cross-Site Scripting
exploitdb·2006-09-21
CVE-2006-4985 BandSite CMS 1.1 - 'sendemail.php' Cross-Site Scripting
BandSite CMS 1.1 - 'sendemail.php' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/20137/info
Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data.
These issues may allow an attacker to access sensitive information, execute arbitrary server-side script code in the context of the affected webserver, or execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This could help the attacker steal cookie-based authentication credentials; other attacks are possible.
Version 1.1.0 is vulnerable; other versions may also be affected.
http://www.example.com/adminpanel/includes/mailinglist/sendemail.php?message_text=alert(document.cookie);
Exploit-DB
BandSite CMS 1.1 - 'releases_content.php' Cross-Site Scripting
exploitdb·2006-09-21
CVE-2006-4985 BandSite CMS 1.1 - 'releases_content.php' Cross-Site Scripting
BandSite CMS 1.1 - 'releases_content.php' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/20137/info
Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data.
These issues may allow an attacker to access sensitive information, execute arbitrary server-side script code in the context of the affected webserver, or execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This could help the attacker steal cookie-based authentication credentials; other attacks are possible.
Version 1.1.0 is vulnerable; other versions may also be affected.
http://www.example.com/includes/content/releases_content.php?the_band=alert(document.cookie);
Exploit-DB
BandSite CMS 1.1 - 'signgbook_content.php' Cross-Site Scripting
exploitdb·2006-09-21
CVE-2006-4985 BandSite CMS 1.1 - 'signgbook_content.php' Cross-Site Scripting
BandSite CMS 1.1 - 'signgbook_content.php' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/20137/info
Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data.
These issues may allow an attacker to access sensitive information, execute arbitrary server-side script code in the context of the affected webserver, or execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This could help the attacker steal cookie-based authentication credentials; other attacks are possible.
Version 1.1.0 is vulnerable; other versions may also be affected.
http://www.example.com/includes/content/signgbook_content.php?the_band=alert(document.cookie);
Exploit-DB
BandSite CMS 1.1 - 'footer.php' Cross-Site Scripting
exploitdb·2006-09-21
CVE-2006-4985 BandSite CMS 1.1 - 'footer.php' Cross-Site Scripting
BandSite CMS 1.1 - 'footer.php' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/20137/info
Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data.
These issues may allow an attacker to access sensitive information, execute arbitrary server-side script code in the context of the affected webserver, or execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This could help the attacker steal cookie-based authentication credentials; other attacks are possible.
Version 1.1.0 is vulnerable; other versions may also be affected.
http://www.example.com/includes/footer.php?this_year=alert(document.cookie);
Exploit-DB
BandSite CMS 1.1 - 'help_news.php' Cross-Site Scripting
exploitdb·2006-09-21
CVE-2006-4985 BandSite CMS 1.1 - 'help_news.php' Cross-Site Scripting
BandSite CMS 1.1 - 'help_news.php' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/20137/info
Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data.
These issues may allow an attacker to access sensitive information, execute arbitrary server-side script code in the context of the affected webserver, or execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This could help the attacker steal cookie-based authentication credentials; other attacks are possible.
Version 1.1.0 is vulnerable; other versions may also be affected.
http://www.example.com/adminpanel/includes/helpfiles/help_news.php?the_band=alert(document.cookie);
Exploit-DB
BandSite CMS 1.1 - 'help_mp3.php' Cross-Site Scripting
exploitdb·2006-09-21
CVE-2006-4985 BandSite CMS 1.1 - 'help_mp3.php' Cross-Site Scripting
BandSite CMS 1.1 - 'help_mp3.php' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/20137/info
Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data.
These issues may allow an attacker to access sensitive information, execute arbitrary server-side script code in the context of the affected webserver, or execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This could help the attacker steal cookie-based authentication credentials; other attacks are possible.
Version 1.1.0 is vulnerable; other versions may also be affected.
http://www.example.com/adminpanel/includes/helpfiles/help_mp3.php?max_file_size_purdy=alert(document.cooki
Exploit-DB
BandSite CMS 1.1 - 'links_content.php' Cross-Site Scripting
exploitdb·2006-09-21
CVE-2006-4985 BandSite CMS 1.1 - 'links_content.php' Cross-Site Scripting
BandSite CMS 1.1 - 'links_content.php' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/20137/info
Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data.
These issues may allow an attacker to access sensitive information, execute arbitrary server-side script code in the context of the affected webserver, or execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This could help the attacker steal cookie-based authentication credentials; other attacks are possible.
Version 1.1.0 is vulnerable; other versions may also be affected.
http://www.example.com/includes/content/links_content.php?the_band=alert(document.cookie);
Exploit-DB
BandSite CMS 1.1 - 'mp3_content.php' Cross-Site Scripting
exploitdb·2006-09-21
CVE-2006-4985 BandSite CMS 1.1 - 'mp3_content.php' Cross-Site Scripting
BandSite CMS 1.1 - 'mp3_content.php' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/20137/info
Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data.
These issues may allow an attacker to access sensitive information, execute arbitrary server-side script code in the context of the affected webserver, or execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This could help the attacker steal cookie-based authentication credentials; other attacks are possible.
Version 1.1.0 is vulnerable; other versions may also be affected.
http://www.example.com/includes/content/mp3_content.php?the_band=alert(document.cookie);
Exploit-DB
BandSite CMS 1.1 - 'photo_content.php' Cross-Site Scripting
exploitdb·2006-09-21
CVE-2006-4985 BandSite CMS 1.1 - 'photo_content.php' Cross-Site Scripting
BandSite CMS 1.1 - 'photo_content.php' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/20137/info
Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data.
These issues may allow an attacker to access sensitive information, execute arbitrary server-side script code in the context of the affected webserver, or execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This could help the attacker steal cookie-based authentication credentials; other attacks are possible.
Version 1.1.0 is vulnerable; other versions may also be affected.
http://www.example.com/includes/content/photo_content.php?the_band=alert(document.cookie);
Exploit-DB
BandSite CMS 1.1 - 'header.php' Cross-Site Scripting
exploitdb·2006-09-21
CVE-2006-4985 BandSite CMS 1.1 - 'header.php' Cross-Site Scripting
BandSite CMS 1.1 - 'header.php' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/20137/info
Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data.
These issues may allow an attacker to access sensitive information, execute arbitrary server-side script code in the context of the affected webserver, or execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This could help the attacker steal cookie-based authentication credentials; other attacks are possible.
Version 1.1.0 is vulnerable; other versions may also be affected.
http://www.example.com/adminpanel/includes/header.php?the_band=alert(document.cookie);
No writeups or analysis indexed.
http://secunia.com/advisories/21992http://securityreason.com/securityalert/1634http://www.securityfocus.com/archive/1/446576/100/0/threadedhttp://www.securityfocus.com/bid/20137http://secunia.com/advisories/21992http://securityreason.com/securityalert/1634http://www.securityfocus.com/archive/1/446576/100/0/threadedhttp://www.securityfocus.com/bid/20137
2006-09-26
Published