CVE-2006-6675

3 documents3 sources
Severity
6.8MEDIUM
EPSS
0.9%
top 24.89%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Novell Apache Http ServerNovell Netware
Timeline
PublishedDec 21
Latest updateMay 1

Description

Cross-site scripting (XSS) vulnerability in Novell NetWare 6.5 Support Pack 5 and 6 and Novell Apache on NetWare 2.0.48 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters in Welcome web-app.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages2 packages

🔴Vulnerability Details

2
GHSA
GHSA-792c-qchm-gqv2: Cross-site scripting (XSS) vulnerability in Novell NetWare 62022-05-01
CVEList
CVE-2006-6675: Cross-site scripting (XSS) vulnerability in Novell NetWare 62006-12-21
CVE-2006-6675 (MEDIUM CVSS 6.8) | Cross-site scripting (XSS) vulnerab | cvebase.io