Vulnerabilities > CVE-2006-2265 - Input Validation vulnerability in Ocean12 Technologies Calendar Manager PRO 1.00

047910
CVSS 2.6 - LOW
Attack vector
NETWORK
Attack complexity
HIGH
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
network
high complexity
ocean12-technologies
exploit available
NVD
Published: 2006-05-09
Updated: 2017-07-20

Summary

Cross-site scripting vulnerability in admin/main.asp in Ocean12 Calendar Manager Pro 1.00 allows remote attackers to inject arbitrary web script or HTML via the date parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Vulnerable Configurations

Part Description Count
Application
Ocean12_Technologies
1

Exploit-Db

descriptionOcean12 Technologies Calendar Manager Pro 1.0 1 admin/main.asp date Parameter XSS. CVE-2006-2265. Webapps exploit for asp platform
idEDB-ID:27828
last seen2016-02-03
modified2006-05-08
published2006-05-08
reporterdj_eyes2005
sourcehttps://www.exploit-db.com/download/27828/
titleOcean12 Technologies Calendar Manager Pro 1.0 1 admin/main.asp date Parameter XSS

References