Vulnerability Details CVE-2006-0116
Cross-site scripting vulnerability search.inetstore in iNETstore Ebusiness Software 2.0 allows remote attackers to inject arbitrary web script or HTML via the searchterm parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 70.7%
CVSS Severity
CVSS v2 Score 5.0
References
- http://osvdb.org/ref/22/22251-inetstore.txt
- http://secunia.com/advisories/18322
- http://www.attrition.org/pipermail/vim/2006-January/000515.html
- http://www.osvdb.org/22251
- http://www.securityfocus.com/archive/1/423137/100/0/threaded
- http://www.securityfocus.com/bid/16156
- http://www.vupen.com/english/advisories/2006/0075
- http://osvdb.org/ref/22/22251-inetstore.txt
- http://secunia.com/advisories/18322
- http://www.attrition.org/pipermail/vim/2006-January/000515.html
- http://www.osvdb.org/22251
- http://www.securityfocus.com/archive/1/423137/100/0/threaded
- http://www.securityfocus.com/bid/16156
- http://www.vupen.com/english/advisories/2006/0075
Products affected by CVE-2006-0116
-
cpe:2.3:a:inetstore:inetstore_online:*