Vulnerabilities > CVE-2006-0211 - Unspecified vulnerability in Helm Hosting Helm Hosting Control Panel 3.2.8
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN helm-hosting
exploit available
Summary
Cross-site scripting (XSS) vulnerability in forgotPassword.asp in Helm Hosting Control Panel 3.2.8 and earlier allows remote attackers to inject arbitrary web script or HTML via the txtEmailAddress parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | Web Host Automation Ltd. Helm 3.2.8 ForgotPassword.ASP Cross-Site Scripting Vulnerability. CVE-2006-0211. Webapps exploit for asp platform |
id | EDB-ID:27079 |
last seen | 2016-02-03 |
modified | 2006-01-13 |
published | 2006-01-13 |
reporter | M.Neset KABAKLI |
source | https://www.exploit-db.com/download/27079/ |
title | Web Host Automation Ltd. Helm 3.2.8 ForgotPassword.ASP Cross-Site Scripting Vulnerability |
References
- http://www.securityfocus.com/bid/16234
- http://secunia.com/advisories/18492
- http://www.osvdb.org/22454
- http://www.webhostautomation.com/webhost-301
- http://www.vupen.com/english/advisories/2006/0203
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24139
- http://www.securityfocus.com/archive/1/421791/100/0/threaded