CVE-2006-6020
published 2006-11-21CVE-2006-6020: Cross-site scripting (XSS) vulnerability in announce.php in Blog Torrent Preview 0.92 allows remote attackers to inject arbitrary web script or HTML via the…
PriorityP423medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
1.70%
74.3th percentile
Cross-site scripting (XSS) vulnerability in announce.php in Blog Torrent Preview 0.92 allows remote attackers to inject arbitrary web script or HTML via the left parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| blog_torrent | blog_torrent_preview | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
Blog Torrent Preview 0.92 announce.php left cross site scripting (EDB-29049 / XFDB-30350)
vuldb·2026-04-28·CVSS 6.8
CVE-2006-6020 [MEDIUM] Blog Torrent Preview 0.92 announce.php left cross site scripting (EDB-29049 / XFDB-30350)
A vulnerability labeled as problematic has been found in Blog Torrent Preview 0.92. The affected element is an unknown function of the file announce.php. Executing a manipulation of the argument left can lead to basic cross site scripting.
This vulnerability appears as CVE-2006-6020. The attack may be performed from remote. In addition, an exploit is available.
GHSA
GHSA-6j52-cp24-mvhv: Cross-site scripting (XSS) vulnerability in announce
ghsa_unreviewed·2022-05-01
CVE-2006-6020 [MEDIUM] GHSA-6j52-cp24-mvhv: Cross-site scripting (XSS) vulnerability in announce
Cross-site scripting (XSS) vulnerability in announce.php in Blog Torrent Preview 0.92 allows remote attackers to inject arbitrary web script or HTML via the left parameter.
No detection rules found.
No writeups or analysis indexed.
http://securityreason.com/securityalert/1895http://www.securityfocus.com/archive/1/451856/100/0/threadedhttp://www.securityfocus.com/bid/21125https://exchange.xforce.ibmcloud.com/vulnerabilities/30350http://securityreason.com/securityalert/1895http://www.securityfocus.com/archive/1/451856/100/0/threadedhttp://www.securityfocus.com/bid/21125https://exchange.xforce.ibmcloud.com/vulnerabilities/30350
2006-11-21
Published