Unrated severityNVD Advisory· Published Apr 21, 2006· Updated Apr 16, 2026
CVE-2006-1960
CVE-2006-1960
Description
Cross-site scripting (XSS) vulnerability in the appliance web user interface in Cisco CiscoWorks Wireless LAN Solution Engine (WLSE) and WLSE Express before 2.13 allows remote attackers to inject arbitrary web script or HTML, possibly via the displayMsg parameter to archiveApplyDisplay.jsp, aka bug ID CSCsc01095.
Affected products
28cpe:2.3:a:cisco:wireless_lan_solution_engine:2.0:*:*:*:*:*:*:*+ 27 more
- cpe:2.3:a:cisco:wireless_lan_solution_engine:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:wireless_lan_solution_engine:2.0:*:express:*:*:*:*:*
- cpe:2.3:a:cisco:wireless_lan_solution_engine:2.1:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:wireless_lan_solution_engine:2.10:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:wireless_lan_solution_engine:2.10:*:express:*:*:*:*:*
- cpe:2.3:a:cisco:wireless_lan_solution_engine:2.11:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:wireless_lan_solution_engine:2.11:*:express:*:*:*:*:*
- cpe:2.3:a:cisco:wireless_lan_solution_engine:2.12:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:wireless_lan_solution_engine:2.12:*:express:*:*:*:*:*
- cpe:2.3:a:cisco:wireless_lan_solution_engine:2.13:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:wireless_lan_solution_engine:2.13:*:express:*:*:*:*:*
- cpe:2.3:a:cisco:wireless_lan_solution_engine:2.1:*:express:*:*:*:*:*
- cpe:2.3:a:cisco:wireless_lan_solution_engine:2.2:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:wireless_lan_solution_engine:2.2:*:express:*:*:*:*:*
- cpe:2.3:a:cisco:wireless_lan_solution_engine:2.3:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:wireless_lan_solution_engine:2.3:*:express:*:*:*:*:*
- cpe:2.3:a:cisco:wireless_lan_solution_engine:2.4:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:wireless_lan_solution_engine:2.4:*:express:*:*:*:*:*
- cpe:2.3:a:cisco:wireless_lan_solution_engine:2.5:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:wireless_lan_solution_engine:2.5:*:express:*:*:*:*:*
- cpe:2.3:a:cisco:wireless_lan_solution_engine:2.6:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:wireless_lan_solution_engine:2.6:*:express:*:*:*:*:*
- cpe:2.3:a:cisco:wireless_lan_solution_engine:2.7:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:wireless_lan_solution_engine:2.7:*:express:*:*:*:*:*
- cpe:2.3:a:cisco:wireless_lan_solution_engine:2.8:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:wireless_lan_solution_engine:2.8:*:express:*:*:*:*:*
- cpe:2.3:a:cisco:wireless_lan_solution_engine:2.9:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:wireless_lan_solution_engine:2.9:*:express:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
10- secunia.com/advisories/19736nvdPatchVendor Advisory
- securitytracker.com/idnvdPatch
- www.cisco.com/warp/public/707/cisco-sa-20060419-wlse.shtmlnvdPatch
- www.assurance.com.au/advisories/200604-cisco.txtnvd
- www.osvdb.org/24812nvd
- www.securityfocus.com/archive/1/431367/30/5490/threadednvd
- www.securityfocus.com/archive/1/431371/30/5490/threadednvd
- www.securityfocus.com/bid/17604nvd
- www.vupen.com/english/advisories/2006/1434nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/25883nvd
News mentions
0No linked articles in our index yet.