PT-2006-1532 · Goldstag · Goldstag Content Management System

Published

2006-01-27

Updated

2017-07-20

CVE-2006-0466

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Goldstag Content Management System (affected versions not specified)

Description A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML via the text parameter in the "search.asp" page.

Recommendations For Goldstag Content Management System, consider restricting access to the text parameter in the search.asp page until a fix is available. As a temporary workaround, avoid using the text parameter in the search.asp page to minimize the risk of exploitation.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-0466

Affected Products

Goldstag Content Management System

PT-2006-1532 · Goldstag · Goldstag Content Management System

CVE-2006-0466

Related Identifiers

Affected Products

References · 4