Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2963

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2006-2963
Last Modified 07 Mar 2011 09:37:23
Published 12 Jun 2006 04:06:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2006-2963

Summary

Cross-site scripting (XSS) vulnerability in Suchergebnisse.asp in Cabacos Web CMS 3.8.498 and earlier allows remote attackers to inject arbitrary web script or HTML via the suchtext parameter.

Vulnerable Systems

Application

  • It-direkt Cabacos Web Cms 3.8.498


References

VUPEN - ADV-2006-2277

BUGTRAQ - 20060610 [MajorSecurity #13]Cabacos Web CMS<= 3.8 - XSS

MISC - http://www.majorsecurity.de/advisory/major_rls13.txt

SECTRACK - 1016276

SECUNIA - 20583

XF - cabacos-searchform-xss(27063)


Last Updated: 27 May 2016 10:42:50