Vulnerabilities > CVE-2006-6363 - Cross-Site Scripting vulnerability in BlueSocket BSC 2100 Admin.PL
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Cross-site scripting (XSS) vulnerability in admin.pl in BlueSocket Secure Controller (BSC) before 5.2, or without 5.1.1-BluePatch, allows remote attackers to inject arbitrary web script or HTML via the ad_name parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |
Exploit-Db
description | BlueSocket BSC 2100 5.0/5.1 Admin.PL Cross-Site Scripting Vulnerability. CVE-2006-6363. Webapps exploit for cgi platform |
id | EDB-ID:29221 |
last seen | 2016-02-03 |
modified | 2006-12-04 |
published | 2006-12-04 |
reporter | Jesus Olmos Gonzalez |
source | https://www.exploit-db.com/download/29221/ |
title | BlueSocket BSC 2100 5.0/5.1 Admin.PL Cross-Site Scripting Vulnerability |