Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2687

Overview

Vulnerability Score 4.9 4.9
CVE Id CVE-2006-2687
Last Modified 07 Mar 2011 09:36:46
Published 31 May 2006 06:06:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication SINGLE_INSTANCE

CVE-2006-2687

Summary

Cross-site scripting (XSS) vulnerability in adduser.php in PHP-AGTC Membership System 1.1a and earlier allows remote attackers to inject arbitrary web script or HTML via the email address (useremail parameter).

Vulnerable Systems

Application

  • Agtc Websolutions Php-agtc Membership System 1.1a


References

VUPEN - ADV-2006-2020

BID - 18127

BUGTRAQ - 20060523 PHP AGTC-Membership system <= v1.1a XSS

SECUNIA - 20305

XF - phpagtc-adduser-xss(26703)

SREASON - 995


Last Updated: 27 May 2016 10:42:42