CVE - CVE-2006-5535

CVE-ID
CVE-2006-5535	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Multiple cross-site scripting (XSS) vulnerabilities in WebHostManager (WHM) 10.8.0 cPanel 10.9.0 R50 allow remote attackers to inject arbitrary web script or HTML via the (1) theme parameter to scripts/dosetmytheme and the (2) template parameter to scripts2/editzonetemplate.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BID:20683 URL:http://www.securityfocus.com/bid/20683 BUGTRAQ:20061022 WHM 10.8.0 cPanel 10.9.0 R50 CentOS 4.4 i686 WHM X v3.1.0 Xss Vulnerability URL:http://www.securityfocus.com/archive/1/449472/100/0/threaded CONFIRM:http://changelog.cpanel.net/ SECUNIA:22555 URL:http://secunia.com/advisories/22555 SREASON:1780 URL:http://securityreason.com/securityalert/1780 VUPEN:ADV-2006-4190 URL:~~http://www.vupen.com/english/advisories/2006/4190~~ (Obsolete source)
Assigning CNA
MITRE Corporation
Date Record Created
20061026	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20061026)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)