CVE-2006-6035
published 2006-11-22CVE-2006-6035: Cross-site scripting (XSS) vulnerability in list.php in BLOG:CMS 4.1.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the FADDR…
PriorityP424medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
2.46%
82.4th percentile
Cross-site scripting (XSS) vulnerability in list.php in BLOG:CMS 4.1.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the FADDR parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| f-art_agency | blog_cms | <= 4.1.3 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
F-art Agency Blog Cms up to 4.1.3 list.php FADDR cross site scripting (EDB-29095 / XFDB-30385)
vuldb·2026-04-28·CVSS 6.8
CVE-2006-6035 [MEDIUM] F-art Agency Blog Cms up to 4.1.3 list.php FADDR cross site scripting (EDB-29095 / XFDB-30385)
A vulnerability labeled as problematic has been found in F-art Agency Blog Cms up to 4.1.3. This impacts an unknown function of the file list.php. The manipulation of the argument FADDR results in cross site scripting.
This vulnerability is reported as CVE-2006-6035. The attack can be launched remotely. Moreover, an exploit is present.
GHSA
GHSA-rmrr-4p84-jchv: Cross-site scripting (XSS) vulnerability in list
ghsa_unreviewed·2022-05-01
CVE-2006-6035 [MEDIUM] CWE-79 GHSA-rmrr-4p84-jchv: Cross-site scripting (XSS) vulnerability in list
Cross-site scripting (XSS) vulnerability in list.php in BLOG:CMS 4.1.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the FADDR parameter.
No detection rules found.
No writeups or analysis indexed.
http://marc.info/?l=bugtraq&m=116387287216907&w=2http://secunia.com/advisories/23025http://securitytracker.com/id?1017250http://www.securityfocus.com/bid/21173http://www.vupen.com/english/advisories/2006/4598https://exchange.xforce.ibmcloud.com/vulnerabilities/30385http://marc.info/?l=bugtraq&m=116387287216907&w=2http://secunia.com/advisories/23025http://securitytracker.com/id?1017250http://www.securityfocus.com/bid/21173http://www.vupen.com/english/advisories/2006/4598https://exchange.xforce.ibmcloud.com/vulnerabilities/30385
2006-11-22
Published