CVE-2006-0806

Name	CVE-2006-0806
Description	Multiple cross-site scripting (XSS) vulnerabilities in ADOdb 4.71, as used in multiple packages such as phpESP, allow remote attackers to inject arbitrary web script or HTML via (1) the next_page parameter in adodb-pager.inc.php and (2) other unspecified vectors related to PHP_SELF.
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
References	DSA-1029-1, DSA-1030-1, DSA-1031-1
Debian Bugs	358872, 360396

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
cacti (PTS)	bullseye	1.2.16+ds1-2+deb11u3	fixed
	bullseye (security)	1.2.16+ds1-2+deb11u4	fixed
	bookworm	1.2.24+ds1-1+deb12u4	fixed
	bookworm (security)	1.2.24+ds1-1+deb12u2	fixed
	sid, trixie	1.2.28+ds1-3	fixed
libphp-adodb (PTS)	bullseye, bullseye (security)	5.20.19-1+deb11u1	fixed
	bookworm	5.21.4-1	fixed
	sid, trixie	5.22.7-0.1	fixed

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Urgency	Origin	Debian Bugs
cacti	source	sarge	0.8.6c-7sarge3		DSA-1031-1
cacti	source	(unstable)	0.8.6d-1	medium
libphp-adodb	source	woody	1.51-1.2		DSA-1029-1
libphp-adodb	source	sarge	4.52-1sarge1		DSA-1029-1
libphp-adodb	source	(unstable)	4.72-0.1	medium		358872
moodle	source	sarge	1.4.4.dfsg.1-3sarge1		DSA-1030-1
moodle	source	(unstable)	1.6.1+20060825-1	medium		360396

Notes

according to maintainer, "Moodle neither uses nor plans to use
ADODB_Pager, so it's not affected by #360396, but include patch for
it anyway, just in case somebody decides to use it out of the blue