Security Advisory

CVE-2006-2351

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2006-05-15 10:00:00

Last updated 2024-08-07 17:51:03

Assigner mitre

State PUBLISHED

Description

Multiple cross-site scripting (XSS) vulnerabilities in IPswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 Premium allow remote attackers to inject arbitrary web script or HTML via the (1) sDeviceView or (2) nDeviceID parameter to (a) NmConsole/Navigation.asp or (3) sHostname parameter to (b) NmConsole/ToolResults.asp.

← Browse all CVEs View on cve.org ↗