CVE-2006-5190

Multiple cross-site scripting (XSS) vulnerabilities in osCommerce 2.2 Milestone 2 Update 060817 allow remote attackers to inject arbitrary web script or HTML via the (1) page parameter in the (a) banner_manager.php, (b) banner_statistics.php, (c) countries.php, (d) currencies.php, (e) languages.php, (f) manufacturers.php, (g) newsletters.php, (h) orders_status.php, (i) products_attributes.php, (j) products_expected.php, (k) reviews.php, (l) specials.php, (m) stats_products_purchased.php, (n) stats_products_viewed.php, (o) tax_classes.php, (p) tax_rates.php, or (q) zones.php scripts in /admin, and the (2) zpage parameter in (r) admin/geo_zones.php.

CVSS v2.0 4.3 MEDIUM

4.3^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability : 8.6 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://lostmon.blogspot.com/2006/10/oscommerce-multiple-scripts-page-param.html	Exploit
http://www.securityfocus.com/bid/20343	Exploit
http://securitytracker.com/id?1016979	Exploit
http://secunia.com/advisories/22275	Exploit Vendor Advisory
http://www.osvdb.org/29795
http://www.osvdb.org/29796
http://www.osvdb.org/29797
http://www.osvdb.org/29798
http://www.osvdb.org/29799
http://www.osvdb.org/29800
http://www.osvdb.org/29801
http://www.osvdb.org/29802
http://www.osvdb.org/29805
http://www.osvdb.org/29806
http://www.osvdb.org/29807
http://www.osvdb.org/29808
http://www.osvdb.org/29809
http://www.osvdb.org/29810
http://www.osvdb.org/29811
http://www.osvdb.org/29803
http://www.osvdb.org/29804
http://www.vupen.com/english/advisories/2006/3917
https://exchange.xforce.ibmcloud.com/vulnerabilities/29355
https://www.exploit-db.com/exploits/28759/
https://www.exploit-db.com/exploits/28758/
https://www.exploit-db.com/exploits/28757/
https://www.exploit-db.com/exploits/28756/
https://www.exploit-db.com/exploits/28755/
https://www.exploit-db.com/exploits/28754/
https://www.exploit-db.com/exploits/28753/
https://www.exploit-db.com/exploits/28752/
https://www.exploit-db.com/exploits/28750/
https://www.exploit-db.com/exploits/28749/
https://www.exploit-db.com/exploits/28748/
https://www.exploit-db.com/exploits/28747/
https://www.exploit-db.com/exploits/28746/
https://www.exploit-db.com/exploits/28745/
https://www.exploit-db.com/exploits/28744/
https://www.exploit-db.com/exploits/28743/

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:oscommerce:oscommerce:2.2_cvs:::::::*
	cpe:2.3:a:oscommerce:oscommerce:2.2_ms1:::::::*
	cpe:2.3:a:oscommerce:oscommerce:1.13:::::::*
	cpe:2.3:a:oscommerce:oscommerce:1.5.1:::::::*
	cpe:2.3:a:oscommerce:oscommerce:2.1:::::::*
	cpe:2.3:a:oscommerce:oscommerce:1.11:::::::*
	cpe:2.3:a:oscommerce:oscommerce:1.12:::::::*
	cpe:2.3:a:oscommerce:oscommerce::::::::
	cpe:2.3:a:oscommerce:oscommerce:1.1:::::::*
	cpe:2.3:a:oscommerce:oscommerce:2.2_ms2:::::::*
	cpe:2.3:a:oscommerce:oscommerce:2.2_ms3:::::::*

Information

Published : 2006-10-09 21:06

Updated : 2017-10-04 18:29

NVD link : CVE-2006-5190

Mitre link : CVE-2006-5190

JSON object : View

CWE

NVD-CWE-Other

Products Affected

oscommerce

oscommerce

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://lostmon.blogspot.com/2006/10/oscommerce-multiple-scripts-page-param.html", "name": "http://lostmon.blogspot.com/2006/10/oscommerce-multiple-scripts-page-param.html", "tags": ["Exploit"], "refsource": "MISC"}, {"url": "http://www.securityfocus.com/bid/20343", "name": "20343", "tags": ["Exploit"], "refsource": "BID"}, {"url": "http://securitytracker.com/id?1016979", "name": "1016979", "tags": ["Exploit"], "refsource": "SECTRACK"}, {"url": "http://secunia.com/advisories/22275", "name": "22275", "tags": ["Exploit", "Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.osvdb.org/29795", "name": "29795", "tags": [], "refsource": "OSVDB"}, {"url": "http://www.osvdb.org/29796", "name": "29796", "tags": [], "refsource": "OSVDB"}, {"url": "http://www.osvdb.org/29797", "name": "29797", "tags": [], "refsource": "OSVDB"}, {"url": "http://www.osvdb.org/29798", "name": "29798", "tags": [], "refsource": "OSVDB"}, {"url": "http://www.osvdb.org/29799", "name": "29799", "tags": [], "refsource": "OSVDB"}, {"url": "http://www.osvdb.org/29800", "name": "29800", "tags": [], "refsource": "OSVDB"}, {"url": "http://www.osvdb.org/29801", "name": "29801", "tags": [], "refsource": "OSVDB"}, {"url": "http://www.osvdb.org/29802", "name": "29802", "tags": [], "refsource": "OSVDB"}, {"url": "http://www.osvdb.org/29805", "name": "29805", "tags": [], "refsource": "OSVDB"}, {"url": "http://www.osvdb.org/29806", "name": "29806", "tags": [], "refsource": "OSVDB"}, {"url": "http://www.osvdb.org/29807", "name": "29807", "tags": [], "refsource": "OSVDB"}, {"url": "http://www.osvdb.org/29808", "name": "29808", "tags": [], "refsource": "OSVDB"}, {"url": "http://www.osvdb.org/29809", "name": "29809", "tags": [], "refsource": "OSVDB"}, {"url": "http://www.osvdb.org/29810", "name": "29810", "tags": [], "refsource": "OSVDB"}, {"url": "http://www.osvdb.org/29811", "name": "29811", "tags": [], "refsource": "OSVDB"}, {"url": "http://www.osvdb.org/29803", "name": "29803", "tags": [], "refsource": "OSVDB"}, {"url": "http://www.osvdb.org/29804", "name": "29804", "tags": [], "refsource": "OSVDB"}, {"url": "http://www.vupen.com/english/advisories/2006/3917", "name": "ADV-2006-3917", "tags": [], "refsource": "VUPEN"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29355", "name": "oscommerce-page-xss(29355)", "tags": [], "refsource": "XF"}, {"url": "https://www.exploit-db.com/exploits/28759/", "name": "28759", "tags": [], "refsource": "EXPLOIT-DB"}, {"url": "https://www.exploit-db.com/exploits/28758/", "name": "28758", "tags": [], "refsource": "EXPLOIT-DB"}, {"url": "https://www.exploit-db.com/exploits/28757/", "name": "28757", "tags": [], "refsource": "EXPLOIT-DB"}, {"url": "https://www.exploit-db.com/exploits/28756/", "name": "28756", "tags": [], "refsource": "EXPLOIT-DB"}, {"url": "https://www.exploit-db.com/exploits/28755/", "name": "28755", "tags": [], "refsource": "EXPLOIT-DB"}, {"url": "https://www.exploit-db.com/exploits/28754/", "name": "28754", "tags": [], "refsource": "EXPLOIT-DB"}, {"url": "https://www.exploit-db.com/exploits/28753/", "name": "28753", "tags": [], "refsource": "EXPLOIT-DB"}, {"url": "https://www.exploit-db.com/exploits/28752/", "name": "28752", "tags": [], "refsource": "EXPLOIT-DB"}, {"url": "https://www.exploit-db.com/exploits/28750/", "name": "28750", "tags": [], "refsource": "EXPLOIT-DB"}, {"url": "https://www.exploit-db.com/exploits/28749/", "name": "28749", "tags": [], "refsource": "EXPLOIT-DB"}, {"url": "https://www.exploit-db.com/exploits/28748/", "name": "28748", "tags": [], "refsource": "EXPLOIT-DB"}, {"url": "https://www.exploit-db.com/exploits/28747/", "name": "28747", "tags": [], "refsource": "EXPLOIT-DB"}, {"url": "https://www.exploit-db.com/exploits/28746/", "name": "28746", "tags": [], "refsource": "EXPLOIT-DB"}, {"url": "https://www.exploit-db.com/exploits/28745/", "name": "28745", "tags": [], "refsource": "EXPLOIT-DB"}, {"url": "https://www.exploit-db.com/exploits/28744/", "name": "28744", "tags": [], "refsource": "EXPLOIT-DB"}, {"url": "https://www.exploit-db.com/exploits/28743/", "name": "28743", "tags": [], "refsource": "EXPLOIT-DB"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Multiple cross-site scripting (XSS) vulnerabilities in osCommerce 2.2 Milestone 2 Update 060817 allow remote attackers to inject arbitrary web script or HTML via the (1) page parameter in the (a) banner_manager.php, (b) banner_statistics.php, (c) countries.php, (d) currencies.php, (e) languages.php, (f) manufacturers.php, (g) newsletters.php, (h) orders_status.php, (i) products_attributes.php, (j) products_expected.php, (k) reviews.php, (l) specials.php, (m) stats_products_purchased.php, (n) stats_products_viewed.php, (o) tax_classes.php, (p) tax_rates.php, or (q) zones.php scripts in /admin, and the (2) zpage parameter in (r) admin/geo_zones.php."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2006-5190", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "severity": "MEDIUM", "impactScore": 2.9, "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2006-10-10T04:06Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:oscommerce:oscommerce:2.2_cvs:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oscommerce:oscommerce:2.2_ms1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oscommerce:oscommerce:1.13:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oscommerce:oscommerce:1.5.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oscommerce:oscommerce:2.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oscommerce:oscommerce:1.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oscommerce:oscommerce:1.12:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oscommerce:oscommerce:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "2.2_ms2_2006-08-17"}, {"cpe23Uri": "cpe:2.3:a:oscommerce:oscommerce:1.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oscommerce:oscommerce:2.2_ms2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:oscommerce:oscommerce:2.2_ms3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2017-10-05T01:29Z"}

4.3 /10