CVE-2006-0211

2006-01-1401:00:00

mitre

www.cve.org

5.7 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.5%

JSON

Cross-site scripting (XSS) vulnerability in forgotPassword.asp in Helm Hosting Control Panel 3.2.8 and earlier allows remote attackers to inject arbitrary web script or HTML via the txtEmailAddress parameter.

References

secunia.com/advisories/18492

www.osvdb.org/22454

www.securityfocus.com/archive/1/421791/100/0/threaded

www.securityfocus.com/bid/16234

www.vupen.com/english/advisories/2006/0203

www.webhostautomation.com/webhost-301

exchange.xforce.ibmcloud.com/vulnerabilities/24139