Unrated severityNVD Advisory· Published Jan 13, 2006· Updated Apr 16, 2026
CVE-2006-0193
CVE-2006-0193
Description
Cross-site scripting (XSS) vulnerability in the Hosting Control Panel (psoft.hsphere.CP) in Positive Software H-Sphere 2.4.3 Patch 8 and earlier allows remote attackers to inject arbitrary web script or HTML via the login parameter in a login action.
Affected products
32cpe:2.3:a:positive_software:h-sphere:2.4.1:*:*:*:*:*:*:*+ 31 more
- cpe:2.3:a:positive_software:h-sphere:2.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.1_patch_1:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.1_patch_2:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.1_patch_3:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.1_patch_4:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.3_patch_5:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.3_patch_6:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.3_patch_7:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.3_patch_8:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.3_rc1:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.3_rc2:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.1_patch_5:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.1_patch_6:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.1_patch_7:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.2_beta_1:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.2_beta_2:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.2_beta_3:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.2_patch_1:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.2_patch_2:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.2_patch_3:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.2_patch_4:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.2_patch_5:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.2_rc1:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.2_rc2:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.3:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.3_beta_1:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.3_beta_2:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.3_patch_1:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.3_patch_2:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.3_patch_3:*:*:*:*:*:*:*
- cpe:2.3:a:positive_software:h-sphere:2.4.3_patch_4:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7- secunia.com/advisories/18447nvd
- www.osvdb.org/22372nvd
- www.psoft.net/HSdocumentation/versions/nvd
- www.psoft.net/HSdocumentation/versions/index.phpnvd
- www.securityfocus.com/archive/1/421704/100/0/threadednvd
- www.vupen.com/english/advisories/2006/0172nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/24096nvd
News mentions
0No linked articles in our index yet.