Lucene search
HistoryOct 03, 2022 - 4:21 p.m.
CVE-2006-0215
cve-2006-0215
xss
admin.php
qualityebiz
quality ppc
qppc
remote attackers
web script
html
cpage parameter
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.6 Medium
AI Score
Confidence
High
0.006 Low
EPSS
Percentile
79.1%
Cross-site scripting (XSS) vulnerability in admin.php in QualityEBiz Quality PPC (QPPC) 1.0 build 1644 allows remote attackers to inject arbitrary web script or HTML via the cpage parameter. NOTE: this issue might be resultant from CVE-2006-0216.
Affected configurations
Node
qualityebizquality_ppcMatch1.0_build_1644
| CPE | Name | Operator | Version |
|---|---|---|---|
| qualityebiz:quality_ppc | qualityebiz quality ppc | eq | 1.0_build_1644 |
Related
nvd
nvd
CVE-2006-0215
2006-01-16 19:03:00
CVE-2006-0216
2006-01-16 19:03:00
cvelist
cvelist
CVE-2006-0215
2022-10-03 16:21:39
CVE-2006-0216
2006-01-16 19:00:00
prion
prion
Cross site scripting
2006-01-16 19:03:00
Design/Logic Flaw
2006-01-16 19:03:00
cve
cve
CVE-2006-0216
2006-01-16 19:03:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.6 Medium
AI Score
Confidence
High
0.006 Low
EPSS
Percentile
79.1%
Related for CVE-2006-0215