Vulnerabilities > CVE-2006-1960 - Unspecified vulnerability in Cisco Wireless LAN Solution Engine

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

cisco

exploit available

NVD

Published: 2006-04-21

Updated: 2024-11-21

Summary

Cross-site scripting (XSS) vulnerability in the appliance web user interface in Cisco CiscoWorks Wireless LAN Solution Engine (WLSE) and WLSE Express before 2.13 allows remote attackers to inject arbitrary web script or HTML, possibly via the displayMsg parameter to archiveApplyDisplay.jsp, aka bug ID CSCsc01095.

Vulnerable Configurations

Part	Description	Count
Application	Cisco Cisco Wireless LAN Solution Engine 2.3 Cisco Wireless LAN Solution Engine 2.6 Cisco Wireless LAN Solution Engine 2.11 Cisco Wireless LAN Solution Engine 2.2 Cisco Wireless LAN Solution Engine 2.4 Cisco Wireless LAN Solution Engine 2.12 Cisco Wireless LAN Solution Engine 2.10 Cisco Wireless LAN Solution Engine 2.13 Cisco Wireless LAN Solution Engine 2.1 Cisco Wireless LAN Solution Engine 2.0 Cisco Wireless LAN Solution Engine 2.7 Cisco Wireless LAN Solution Engine 2.9 Cisco Wireless LAN Solution Engine 2.5 Cisco Wireless LAN Solution Engine 2.8	28

Exploit-Db

description	Cisco Wireless Lan Solution Engine ArchiveApplyDisplay.JSP Cross-Site Scripting Vulnerability. CVE-2006-1960. Webapps exploit for jsp platform
id	EDB-ID:27684
last seen	2016-02-03
modified	2006-04-19
published	2006-04-19
reporter	Adam Pointon
source	https://www.exploit-db.com/download/27684/
title	Cisco Wireless Lan Solution Engine ArchiveApplyDisplay.JSP Cross-Site Scripting Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References