漏洞信息(CVE-2006-0208)

一、漏洞 CVE-2006-0208 基础信息

漏洞标题

N/A

来源：AIGC 神龙大模型

漏洞描述信息

在PHP 4.4.1和5.1.1中存在多个跨站脚本(XSS)漏洞，当显示错误和html错误选项为启用时，允许远程攻击者通过输入向PHP应用程序中注入未过滤的Web脚本或HTML，并且在结果的错误消息中未过滤。

来源：AIGC 神龙大模型

CVSS信息

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

来源：AIGC 神龙大模型

漏洞类别

N/A

来源：AIGC 神龙大模型

漏洞标题

N/A

来源：美国国家漏洞数据库 NVD

漏洞描述信息

Multiple cross-site scripting (XSS) vulnerabilities in PHP 4.4.1 and 5.1.1, when display_errors and html_errors are on, allow remote attackers to inject arbitrary web script or HTML via inputs to PHP applications that are not filtered when they are included in the resulting error message.

来源：美国国家漏洞数据库 NVD

CVSS信息

N/A

来源：美国国家漏洞数据库 NVD

漏洞类别

N/A

来源：美国国家漏洞数据库 NVD

漏洞标题

PHP 多个跨站脚本攻击漏洞

来源：中国国家信息安全漏洞库 CNNVD

漏洞描述信息

PHP 4.4.1和5.1.1中存在多个跨站脚本攻击漏洞，在打开display_errors和html_errors时，远程攻击者可以通过在产生的错误消息中未进行过滤的PHP应用程序输入信息注入任意Web脚本或HTML。

来源：中国国家信息安全漏洞库 CNNVD

CVSS信息

N/A

来源：中国国家信息安全漏洞库 CNNVD

漏洞类别

跨站脚本

来源：中国国家信息安全漏洞库 CNNVD

二、漏洞 CVE-2006-0208 的公开POC

#	POC 描述	源链接	神龙链接

三、漏洞 CVE-2006-0208 的情报信息

http://support.avaya.com/elmodocs2/security/ASA-2006-129.htm x_refsource_CONFIRM
http://www.php.net/release_5_1_2.php x_refsource_CONFIRM
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=178028 x_refsource_MISC
http://www.php.net/ChangeLog-4.php#4.4.2 x_refsource_CONFIRM
http://support.avaya.com/elmodocs2/security/ASA-2006-160.htm x_refsource_CONFIRM
http://secunia.com/advisories/21564 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/19832 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/20951 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/18697 third-party-advisory x_refsource_SECUNIA
http://www.securityfocus.com/bid/16803 vdb-entry x_refsource_BID
http://secunia.com/advisories/19179 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/19012 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/20210 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/20222 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/18431 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/19355 third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/21252 third-party-advisory x_refsource_SECUNIA
https://usn.ubuntu.com/261-1/ vendor-advisory x_refsource_UBUNTU
http://www.vupen.com/english/advisories/2006/2685 vdb-entry x_refsource_VUPEN
ftp://patches.sgi.com/support/free/security/advisories/20060501-01-U.asc vendor-advisory x_refsource_SGI
http://www.vupen.com/english/advisories/2006/0177 vdb-entry x_refsource_VUPEN
http://www.vupen.com/english/advisories/2006/0369 vdb-entry x_refsource_VUPEN
http://rhn.redhat.com/errata/RHSA-2006-0549.html vendor-advisory x_refsource_REDHAT
http://www.mandriva.com/security/advisories?name=MDKSA-2006:028 vendor-advisory x_refsource_MANDRIVA
http://www.redhat.com/support/errata/RHSA-2006-0501.html vendor-advisory x_refsource_REDHAT
http://www.gentoo.org/security/en/glsa/glsa-200603-22.xml vendor-advisory x_refsource_GENTOO
http://rhn.redhat.com/errata/RHSA-2006-0276.html vendor-advisory x_refsource_REDHAT
http://lists.suse.de/archive/suse-security-announce/2006-Feb/0008.html vendor-advisory x_refsource_SUSE
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10064 vdb-entry signature x_refsource_OVAL
https://nvd.nist.gov/vuln/detail/CVE-2006-0208

一、 漏洞 CVE-2006-0208 基础信息

漏洞标题

漏洞描述信息

CVSS信息

漏洞类别

漏洞标题

漏洞描述信息

CVSS信息

漏洞类别

漏洞标题

漏洞描述信息

CVSS信息

漏洞类别

二、漏洞 CVE-2006-0208 的公开POC

三、漏洞 CVE-2006-0208 的情报信息

一、漏洞 CVE-2006-0208 基础信息