CVE-2006-3737

2006-07-1923:00:00

mitre

www.cve.org

AI Score

5.3

Confidence

High

EPSS

0.009

Percentile

82.6%

JSON

Cross-site scripting (XSS) vulnerability in filemanager/filemanager.php in the control panel in SWsoft Plesk 8.0 and earlier allows remote authenticated users to inject arbitrary web script or HTML via the file parameter.

References

securityreason.com/securityalert/1250

www.osvdb.org/28596

www.securityfocus.com/archive/1/440292/100/0/threaded

www.securityfocus.com/bid/19017

exchange.xforce.ibmcloud.com/vulnerabilities/27770