Vulnerabilities > CVE-2006-5853 - Cross-Site Scripting vulnerability in Immediacy .Net CMS 5.2
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Cross-site scripting (XSS) vulnerability in logon.aspx in Immediacy CMS (Immediacy .NET CMS) 5.2 allows remote attackers to inject arbitrary web script or HTML via the lang parameter, which is returned to the client in a lang cookie.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | Immediacy .NET CMS 5.2 Logon.ASPX Cross-Site Scripting Vulnerability. CVE-2006-5853. Webapps exploit for asp platform |
id | EDB-ID:28941 |
last seen | 2016-02-03 |
modified | 2006-11-08 |
published | 2006-11-08 |
reporter | Gemma Hughes |
source | https://www.exploit-db.com/download/28941/ |
title | Immediacy .NET CMS 5.2 Logon.ASPX Cross-Site Scripting Vulnerability |