PT-2006-3956 · Sixcms · Sixcms

Aesthetico

Published

2006-06-16

Updated

2018-10-18

CVE-2006-3051

CVSS v2.0

5.1

Medium

Vector

AV:N/AC:H/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions SixCMS versions prior to 6.0.6patch2

Description The issue is related to a cross-site scripting (XSS) vulnerability. This vulnerability allows remote attackers to inject arbitrary script code or HTML via the page parameter in the list.php file.

Recommendations For versions prior to 6.0.6patch2, update to version 6.0.6patch2 or later to resolve the issue.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-3051

Affected Products

Sixcms

PT-2006-3956 · Sixcms · Sixcms

CVE-2006-3051

Related Identifiers

Affected Products

References · 11