Vulnerabilities > CVE-2006-5512 - Cross-Site Scripting vulnerability in Zwahlen's Online Shop Cat Parameter

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

zwahlen-informatik

exploit available

NVD

Published: 2006-10-25

Updated: 2018-10-17

Summary

Cross-site scripting (XSS) vulnerability in article.htm in Zwahlen Online Shop allows remote attackers to inject arbitrary web script or HTML via the cat parameter.

Vulnerable Configurations

Part	Description	Count
Application	Zwahlen_Informatik Zwahlen Informatik Online Shop *	1

Exploit-Db

description	Zwahlen's Online Shop 5.2.2 Cat Parameter Cross-Site Scripting Vulnerability. CVE-2006-5512. Webapps exploit for php platform
id	EDB-ID:28842
last seen	2016-02-03
modified	2006-10-23
published	2006-10-23
reporter	MC.Iglo
source	https://www.exploit-db.com/download/28842/
title	Zwahlen's Online Shop 5.2.2 Cat Parameter Cross-Site Scripting Vulnerability

description	INCA IM-204 Information Disclosure Vulnerability. CVE-2006-5512. Remote exploit for hardware platform
id	EDB-ID:28848
last seen	2016-02-03
modified	2006-10-23
published	2006-10-23
reporter	Crackers_Child
source	https://www.exploit-db.com/download/28848/
title	INCA IM-204 Information Disclosure Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References