NVD

Id
65193  
Name
CVE-2006-6649  
Description
Cross-site scripting (XSS) vulnerability in display.php in HyperVM 1.2 and earlier allows remote attackers to inject arbitrary web script or HTML via an encoded frm_action parameter. NOTE: the vendor disputes this issue, but it is not certain whether the dispute is about the severity of the issue, or its existence.  
Reject
 
CVSS Version
2  
CVSS Score
6.8  
Severity
Medium  
CVSS Base Score
6.8  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:P)  
Pub Date
2016-12-20  
Published
2006-12-19  
Modified Date
2011-03-07  
Seq
2006-6649  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
340330 65193 CVE-2006-6649 2051  View
340331 65193 CVE-2006-6649 http://www.aria-security.com/forum/showthread.php?p=89#post89  View
340332 65193 CVE-2006-6649 20061219 Possible HyperVM vendor dispute - but of severity or existence?  View
340333 65193 CVE-2006-6649 20061217 HyperVM Cross-Site Scripting  View
340334 65193 CVE-2006-6649 ADV-2006-5062  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
60336 JVNDB-2006-002602 HyperVM の display.php におけるクロスサイトスクリプティングの脆弱性 HyperVM の display.php には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2006-6649 22751 CVE-2006-6649 65193 6.8 http://jvndb.jvn.jp/ja/contents/2006/JVNDB-2006-002602.html 2006-12-19 2012-09-25 View