NVD

Id
64428  
Name
CVE-2006-5853  
Description
Cross-site scripting (XSS) vulnerability in logon.aspx in Immediacy CMS (Immediacy .NET CMS) 5.2 allows remote attackers to inject arbitrary web script or HTML via the lang parameter, which is returned to the client in a lang cookie.  
Reject
 
CVSS Version
2  
CVSS Score
6.8  
Severity
Medium  
CVSS Base Score
6.8  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:P)  
Pub Date
2016-12-20  
Published
2006-11-09  
Modified Date
2008-09-05  
Seq
2006-5853  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
336244 64428 CVE-2006-5853 1845  View
336245 64428 CVE-2006-5853 http://www.procheckup.com/Vulner_PR0506.php  View
336246 64428 CVE-2006-5853 20061108 Immediacy .NET CMS possibly vulnerable to Cross Site Scripting through a malformed cookie  View
336247 64428 CVE-2006-5853 20965  View
336248 64428 CVE-2006-5853 immediacy-logon-xss(30136)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
60134 JVNDB-2006-002400 Immediacy .NET CMS の logon.aspx におけるクロスサイトスクリプティングの脆弱性 Immediacy CMS (Immediacy .NET CMS) の logon.aspx には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2006-5853 21955 CVE-2006-5853 64428 6.8 http://jvndb.jvn.jp/ja/contents/2006/JVNDB-2006-002400.html 2006-11-09 2012-09-25 View