Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2796

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2006-2796
Last Modified 03 Jan 2013 12:00:00
Published 02 Jun 2006 09:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2006-2796

Summary

Cross-site scripting (XSS) vulnerability in gallery.php in Captivate 1.0 allows remote attackers to inject arbitrary web script or HTML via the page parameter, which is reflected in an error message.

Vulnerable Systems

Application

  • New-place Captivate 1.0


References

XF - captivate-gallery-xss(26589)

BID - 18072

BUGTRAQ - 20060521 Captivate 1.0 - XSS Vuln

SREASON - 1020


Last Updated: 27 May 2016 11:01:32