Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2051

Overview

Vulnerability Score 5.8 5.8
CVE Id CVE-2006-2051
Last Modified 05 Sep 2008 05:03:32
Published 26 Apr 2006 04:06:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2006-2051

Summary

Multiple cross-site scripting (XSS) vulnerabilities in myadmin/index.php in NextAge Shopping Cart allow remote attackers to inject arbitrary web script or HTML via the (1) username and (2) password parameters.

Vulnerable Systems

Application

  • Nextage Shopping Cart


References

BUGTRAQ - 20060425 NextAge Shopping Cart Software XSS

MISC - http://www.aria-security.net/advisory/nextage/nextageshoppingcart.txt

XF - nextageshoppingcart-index-xss(26065)

BID - 17685

SREASON - 791


Last Updated: 27 May 2016 10:42:18