Bug: IceWarp Cross-Site Scripting(XSS) ( Ascii Version )

Search:
WLB2

IceWarp Cross-Site Scripting(XSS)

Published
Credit
Risk
2006.05.23
LiNuX_rOOt
Low
CWE
CVE
Local
Remote
CWE-79
CVE-2006-2484
No
Yes

CVSS Base Score
Impact Subscore
Exploitability Subscore
4.3/10
2.9/10
8.6/10
Exploit range
Attack complexity
Authentication
Remote
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
None
Partial
None

=======================

Discovery by:LiNuX_rOOt

Site:www.alshmokh.com

E-mail:LiNuX_rOOt1 (at) hotmail (dot) com [email concealed]

=======================

Example:

/extend_license/index.html?PHPSESSID=XSS

See this note in TXT Version

Bugtraq RSS
Bugtraq
 
REDDIT
REDDIT
 
DIGG
DIGG
 
LinkedIn
LinkedIn
 
CVE RSS
CVEMAP

Copyright 2014, cxsecurity.com
Ascii Version