Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0507

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2006-0507
Last Modified 07 Mar 2011 09:30:13
Published 01 Feb 2006 06:02:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2006-0507

Summary

Multiple cross-site scripting (XSS) vulnerabilities in Easy CMS allow remote attackers to inject arbitrary web script or HTML via (1) unknown attack vectors in the administrative interface and (2) input fields of the contact form.

Vulnerable Systems

Application

  • Easy Cms


References

XF - easycms-xss(24371)

VUPEN - ADV-2006-0385

BID - 16430

BUGTRAQ - 20060131 Re: EasyCMS vulnerable to XSS injection.

BUGTRAQ - 20060129 EasyCMS vulnerable to XSS injection.

SECUNIA - 18673

BUGTRAQ - 20060208 Re: Re: EasyCMS vulnerable to XSS injection.


Last Updated: 27 May 2016 10:41:40