Vulnerabilities > CVE-2006-5944 - Unspecified vulnerability in Mginternet CAR Site Manager
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN mginternet
exploit available
Summary
Cross-site scripting (XSS) vulnerability in csm/asp/listings.asp in MGinternet Car Site Manager (CSM) allows remote attackers to inject arbitrary web script or HTML via the s parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Car Site Manager csm/asp/listings.asp Multiple Parameter XSS. CVE-2006-5944 . Webapps exploit for asp platform |
| id | EDB-ID:29016 |
| last seen | 2016-02-03 |
| modified | 2006-11-14 |
| published | 2006-11-14 |
| reporter | laurent gaffie |
| source | https://www.exploit-db.com/download/29016/ |
| title | Car Site Manager csm/asp/listings.asp Multiple Parameter XSS |
References
- http://s-a-p.ca/index.php?page=OurAdvisories&id=17
- http://www.securityfocus.com/bid/21066
- http://secunia.com/advisories/22914
- http://securityreason.com/securityalert/1876
- http://www.vupen.com/english/advisories/2006/4532
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30274
- http://www.securityfocus.com/archive/1/451557/100/0/threaded