Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3043

Overview

Vulnerability Score 2.6 2.6
CVE Id CVE-2006-3043
Last Modified 07 Mar 2011 09:37:31
Published 16 Jun 2006 06:02:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2006-3043

Summary

Cross-site scripting (XSS) vulnerability in search.cfm in CreaFrameXe (CFXe) CMS 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the voltext_suche parameter.

Vulnerable Systems

Application

  • Cfxe-cms 2.0


References

VUPEN - ADV-2006-2278

MISC - http://www.majorsecurity.de/advisory/major_rls14.txt

SECTRACK - 1016277

SECUNIA - 20582

XF - cfxe-cms-search-xss(27052)

BUGTRAQ - 20060610 [MajorSecurity #14]CFXe-CMS <= 2.0 - XSS


Last Updated: 27 May 2016 10:42:52