Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3337

Overview

Vulnerability Score 2.6 2.6
CVE Id CVE-2006-3337
Last Modified 07 Mar 2011 09:38:23
Published 03 Jul 2006 02:05:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2006-3337

Summary

Cross-site scripting (XSS) vulnerability in frontend/x/files/select.html in cPanel 10.8.2-CURRENT 118 and earlier allows remote attackers to inject arbitrary web script or HTML via the file parameter.

Vulnerable Systems

Application

  • Cpanel 10.8.2 Current 118


References

VUPEN - ADV-2006-2547

BID - 18655

BUGTRAQ - 20060626 Re: XSS in Cpanel 10

BUGTRAQ - 20060626 XSS in Cpanel 10

SECTRACK - 1016383

SECUNIA - 20840

MISC - http://bugzilla.cpanel.net/show_bug.cgi?id=4282

XF - cpanel-select-xss(27403)


Last Updated: 27 May 2016 10:42:58