2.6
CVE-2006-2163
- EPSS 1.77%
- Veröffentlicht 04.05.2006 12:38:00
- Zuletzt bearbeitet 16.06.2026 22:24:27
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginCross-site scripting (XSS) vulnerability in index.php in Pinnacle Cart 3.33 and earlier allows remote attackers to inject arbitrary web script or HTML via the setbackurl parameter.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Desert Dog Software ≫ Pinnacle Cart Version3.33
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.77% | 0.752 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 2.6 | 4.9 | 2.9 |
AV:N/AC:H/Au:N/C:N/I:P/A:N
|
http://pridels0.blogspot.com/2006/04/pinnacle-cart-xss.html
http://secunia.com/advisories/19878
http://www.securityfocus.com/bid/17794
http://www.vupen.com/english/advisories/2006/1609
https://exchange.xforce.ibmcloud.com/vulnerabilities/26162