CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-5986

admin/options.php in Extreme CMS 0.9, and possibly earlier, does not require authentication, which might allow remote attackers to conduct unauthorized activities. NOTE: this issue can be combined with another vulnerability to expand the scope of a cross-site scripting (XSS) attack without authentication. NOTE: the provenance of this information is unknown; details are obtained from third party sources.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 73.4%

CVSS Severity

CVSS v2 Score 6.8

References

http://secunia.com/advisories/22919
http://www.vupen.com/english/advisories/2006/4529
http://secunia.com/advisories/22919
http://www.vupen.com/english/advisories/2006/4529

Products affected by CVE-2006-5986

Extreme Cms » Extreme Cms » Version: Any

cpe:2.3:a:extreme_cms:extreme_cms:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-5986

Products

Pricing

Contact Us