Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1980

Overview

Vulnerability Score 2.6 2.6
CVE Id CVE-2006-1980
Last Modified 07 Mar 2011 09:34:44
Published 21 Apr 2006 06:02:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2006-1980

Summary

Cross-site scripting (XSS) vulnerability in W2B Online Banking allows remote attackers to inject arbitrary web script or HTML via the (1) query string, (2) SID parameter, or (3) ilang parameter.

Vulnerable Systems

Application

  • W2b Online Banking


References

XF - w2bonlinebanking-sid-xss(25947)

VUPEN - ADV-2006-1445

BID - 17626

OSVDB - 24759

SECUNIA - 19717

MISC - http://pridels0.blogspot.com/2006/04/w2b-online-banking-vuln.html


Last Updated: 27 May 2016 10:42:16