CVSS: 6.8EPSS: 3%CPEs: 2EXPL: 2CVE-2006-6589
https://notcve.org/view.php?id=CVE-2006-6589
15 Dec 2006 — Cross-site scripting (XSS) vulnerability in ecommerce/control/keywordsearch in the Apache Open For Business Project (OFBiz) and Opentaps 0.9.3 allows remote attackers to inject arbitrary web script or HTML via the SEARCH_STRING parameter, a different issue than CVE-2006-6587. NOTE: some of these details are obtained from third party information. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en ecommerce/control/keywordsearch en Apache Open For Business Project (OFBiz) permite a un atacan... • http://jira.undersunconsulting.com/browse/OFBIZ-559 •
CVSS: 6.8EPSS: 1%CPEs: 1EXPL: 3CVE-2006-6587
https://notcve.org/view.php?id=CVE-2006-6587
15 Dec 2006 — Cross-site scripting (XSS) vulnerability in the forum implementation in the ecommerce component in the Apache Open For Business Project (OFBiz) allows remote attackers to inject arbitrary web script or HTML by posting a message. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en la implementación del forum en el componente ecommerce en el Apache Open For Business Project (OFBiz) permite a un atacante remoto inyectar secuencias de comandos web o HTML a través de añadir un mensaje. • http://archives.neohapsis.com/archives/fulldisclosure/2006-12/0177.html •