{"id":"DEBIAN-CVE-2006-0806","details":"Multiple cross-site scripting (XSS) vulnerabilities in ADOdb 4.71, as used in multiple packages such as phpESP, allow remote attackers to inject arbitrary web script or HTML via (1) the next_page parameter in adodb-pager.inc.php and (2) other unspecified vectors related to PHP_SELF.","modified":"2026-05-27T11:00:17.428383417Z","published":"2006-02-21T02:02:00Z","upstream":["CVE-2006-0806"],"references":[{"type":"ADVISORY","url":"https://security-tracker.debian.org/tracker/CVE-2006-0806"}],"affected":[{"package":{"name":"cacti","ecosystem":"Debian:11","purl":"pkg:deb/debian/cacti?arch=source&distro=bullseye"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.8.6d-1"}]}],"ecosystem_specific":{"urgency":"medium"},"database_specific":{"source":"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2006-0806.json"}},{"package":{"name":"cacti","ecosystem":"Debian:12","purl":"pkg:deb/debian/cacti?arch=source&distro=bookworm"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.8.6d-1"}]}],"ecosystem_specific":{"urgency":"medium"},"database_specific":{"source":"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2006-0806.json"}},{"package":{"name":"cacti","ecosystem":"Debian:13","purl":"pkg:deb/debian/cacti?arch=source&distro=trixie"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.8.6d-1"}]}],"ecosystem_specific":{"urgency":"medium"},"database_specific":{"source":"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2006-0806.json"}},{"package":{"name":"cacti","ecosystem":"Debian:14","purl":"pkg:deb/debian/cacti?arch=source&distro=forky"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.8.6d-1"}]}],"ecosystem_specific":{"urgency":"medium"},"database_specific":{"source":"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2006-0806.json"}},{"package":{"name":"libphp-adodb","ecosystem":"Debian:11","purl":"pkg:deb/debian/libphp-adodb?arch=source&distro=bullseye"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.72-0.1"}]}],"ecosystem_specific":{"urgency":"medium"},"database_specific":{"source":"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2006-0806.json"}},{"package":{"name":"libphp-adodb","ecosystem":"Debian:12","purl":"pkg:deb/debian/libphp-adodb?arch=source&distro=bookworm"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.72-0.1"}]}],"ecosystem_specific":{"urgency":"medium"},"database_specific":{"source":"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2006-0806.json"}},{"package":{"name":"libphp-adodb","ecosystem":"Debian:13","purl":"pkg:deb/debian/libphp-adodb?arch=source&distro=trixie"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.72-0.1"}]}],"ecosystem_specific":{"urgency":"medium"},"database_specific":{"source":"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2006-0806.json"}},{"package":{"name":"libphp-adodb","ecosystem":"Debian:14","purl":"pkg:deb/debian/libphp-adodb?arch=source&distro=forky"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.72-0.1"}]}],"ecosystem_specific":{"urgency":"medium"},"database_specific":{"source":"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2006-0806.json"}}],"schema_version":"1.7.5"}