Vulnerabilities > CVE-2006-0210 - Cross-Site Scripting vulnerability in Interspire TrackPoint NX
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Cross-site scripting (XSS) vulnerability in index.php in Interspire TrackPoint NX before 0.1 allows remote attackers to inject arbitrary web script or HTML via the username parameter when using the Login page.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | Interspire TrackPoint NX Index.PHP Cross-Site Scripting Vulnerability. CVE-2006-0210. Webapps exploit for php platform |
id | EDB-ID:27070 |
last seen | 2016-02-03 |
modified | 2006-01-12 |
published | 2006-01-12 |
reporter | M.Neset KABAKLI |
source | https://www.exploit-db.com/download/27070/ |
title | Interspire TrackPoint NX Index.PHP Cross-Site Scripting Vulnerability |
References
- http://secunia.com/advisories/18445
- http://www.interspire.com/forum/showthread.php?p=29606
- http://www.osvdb.org/22377
- http://www.securityfocus.com/archive/1/421740/100/0/threaded
- http://www.securityfocus.com/bid/16214
- http://www.vupen.com/english/advisories/2006/0175
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24112