Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2556

Overview

Vulnerability Score 5.8 5.8
CVE Id CVE-2006-2556
Last Modified 07 Mar 2011 09:36:30
Published 23 May 2006 09:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2006-2556

Summary

Cross-site scripting (XSS) vulnerability in Florian Amrhein NewsPortal before 0.37, and possibly TR Newsportal (TRanx rebuilded), allows remote attackers to inject arbitrary web script or HTML via unknown vectors.

Vulnerable Systems

Application

  • Florian Amrhein Newsportal 0.36


References

SECUNIA - 20128

CONFIRM - http://florian-amrhein.de/newsportal/forum/article?id=1&group=amrhein.newsportal

BUGTRAQ - 20060515 Newsportal: code injection vulnerability

VUPEN - ADV-2006-1838

OSVDB - 25578


Last Updated: 27 May 2016 10:42:40