Vulnerabilities > CVE-2006-5985 - Unspecified vulnerability in Extreme CMS Extreme CMS

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

extreme-cms

NVD

Published: 2006-11-20

Updated: 2024-11-21

Summary

Multiple cross-site scripting (XSS) vulnerabilities in admin/options.php in Extreme CMS 0.9, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the (1) bg1, (2) bg2, (3) text, or (4) size parameters. NOTE: the provenance of this information is unknown; details are obtained from third party sources.

Vulnerable Configurations

Part	Description	Count
Application	Extreme_Cms Extreme CMS Extreme CMS *	1

References

http://secunia.com/advisories/22919
http://secunia.com/advisories/22919
http://www.vupen.com/english/advisories/2006/4529
http://www.vupen.com/english/advisories/2006/4529