CVE-2006-2750

N/A Unknown

Published: June 01, 2006 Modified: April 16, 2026

Description

Cross-site scripting (XSS) vulnerability in the do_mysql_query function in core.php for Open Searchable Image Catalogue (OSIC) before 0.7.0.1 allows remote attackers to inject arbitrary web scripts or HTML via failed SQL queries, which is reflected in an error message.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://secunia.com/advisories/20341

Source: cve@mitre.org

http://securityreason.com/securityalert/1014

Source: cve@mitre.org

http://securitytracker.com/id?1016178

Source: cve@mitre.org

http://sourceforge.net/forum/forum.php?forum_id=576483

Source: cve@mitre.org

http://svn.sourceforge.net/viewcvs.cgi/osic-win/branches/osic_0-7/osic/core.php?r1=477&r2=631

Source: cve@mitre.org

http://www.seclab.tuwien.ac.at/advisories/TUVSA-0605-001.txt

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/435380/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/18169

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/26966

Source: cve@mitre.org

http://secunia.com/advisories/20341

Source: af854a3a-2127-422b-91ae-364da2661108

http://securityreason.com/securityalert/1014

Source: af854a3a-2127-422b-91ae-364da2661108

http://securitytracker.com/id?1016178

Source: af854a3a-2127-422b-91ae-364da2661108

http://sourceforge.net/forum/forum.php?forum_id=576483

Source: af854a3a-2127-422b-91ae-364da2661108

http://svn.sourceforge.net/viewcvs.cgi/osic-win/branches/osic_0-7/osic/core.php?r1=477&r2=631

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.seclab.tuwien.ac.at/advisories/TUVSA-0605-001.txt

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/435380/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/18169

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/26966

Source: af854a3a-2127-422b-91ae-364da2661108

18 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

0.8%

74th percentile

Exploitation Status

Not in CISA KEV

Affected Vendors

open_searchable_image_catalogue