Vulnerability Details CVE-2006-0507
Multiple cross-site scripting (XSS) vulnerabilities in Easy CMS allow remote attackers to inject arbitrary web script or HTML via (1) unknown attack vectors in the administrative interface and (2) input fields of the contact form.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 66.2%
CVSS Severity
CVSS v2 Score 4.3
References
- http://secunia.com/advisories/18673
- http://www.securityfocus.com/archive/1/423442/100/0/threaded
- http://www.securityfocus.com/archive/1/423563/100/0/threaded
- http://www.securityfocus.com/archive/1/424431/100/0/threaded
- http://www.securityfocus.com/bid/16430
- http://www.vupen.com/english/advisories/2006/0385
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24371
- http://secunia.com/advisories/18673
- http://www.securityfocus.com/archive/1/423442/100/0/threaded
- http://www.securityfocus.com/archive/1/423563/100/0/threaded
- http://www.securityfocus.com/archive/1/424431/100/0/threaded
- http://www.securityfocus.com/bid/16430
- http://www.vupen.com/english/advisories/2006/0385
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24371