CVE-2006-1960
Summary
| CVE | CVE-2006-1960 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2006-04-21 10:02:00 UTC |
| Updated | 2018-10-18 16:37:00 UTC |
| Description | Cross-site scripting (XSS) vulnerability in the appliance web user interface in Cisco CiscoWorks Wireless LAN Solution Engine (WLSE) and WLSE Express before 2.13 allows remote attackers to inject arbitrary web script or HTML, possibly via the displayMsg parameter to archiveApplyDisplay.jsp, aka bug ID CSCsc01095. |
Risk And Classification
Problem Types: NVD-CWE-Other
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Cisco | Wireless Lan Solution Engine | 2.0 | All | All | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.0 | All | express | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.1 | All | All | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.1 | All | express | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.10 | All | All | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.10 | All | express | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.11 | All | All | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.11 | All | express | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.12 | All | All | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.12 | All | express | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.13 | All | All | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.13 | All | express | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.2 | All | All | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.2 | All | express | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.3 | All | All | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.3 | All | express | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.4 | All | All | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.4 | All | express | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.5 | All | All | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.5 | All | express | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.6 | All | All | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.6 | All | express | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.7 | All | All | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.7 | All | express | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.8 | All | All | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.8 | All | express | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.9 | All | All | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.9 | All | express | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.0 | All | All | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.0 | All | express | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.1 | All | All | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.1 | All | express | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.10 | All | All | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.10 | All | express | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.11 | All | All | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.11 | All | express | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.12 | All | All | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.12 | All | express | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.13 | All | All | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.13 | All | express | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.2 | All | All | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.2 | All | express | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.3 | All | All | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.3 | All | express | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.4 | All | All | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.4 | All | express | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.5 | All | All | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.5 | All | express | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.6 | All | All | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.6 | All | express | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.7 | All | All | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.7 | All | express | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.8 | All | All | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.8 | All | express | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.9 | All | All | All |
| Application | Cisco | Wireless Lan Solution Engine | 2.9 | All | express | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Webmail : Solution de messagerie professionnelle - OVHcloud- OVH | VUPEN | www.vupen.com | |
| CiscoWorks Wireless LAN Solution Engine Cross-Site Scripting Flaw Yields Administrative Privileges and Command Line Bug Lets Remote Authenticated Users Gain Shell Access - SecurityTracker | SECTRACK | securitytracker.com | Patch |
| SecurityFocus | BUGTRAQ | www.securityfocus.com | |
| SecurityFocus | BUGTRAQ | www.securityfocus.com | |
| Cisco Wireless Lan Solution Engine ArchiveApplyDisplay.JSP Cross-Site Scripting Vulnerability | BID | www.securityfocus.com | |
| 24812 | OSVDB | www.osvdb.org | |
| Page not found - CyberCX | Australia | MISC | www.assurance.com.au | |
| IBM X-Force Exchange | XF | exchange.xforce.ibmcloud.com | |
| Cisco WLSE Privilege Escalation and Cross-Site Scripting - Advisories - Secunia | SECUNIA | secunia.com | Patch, Vendor Advisory |
| Cisco - Networking, Cloud, and Cybersecurity Solutions | CISCO | www.cisco.com | Patch |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.