Unrated severityNVD Advisory· Published Jun 16, 2006· Updated Apr 16, 2026

CVE-2006-3051

Description

Cross-site scripting (XSS) vulnerability in list.php in SixCMS 6.0, and other versions before 6.0.6patch2, allows remote attackers to inject arbitrary script code or HTML via the page parameter.

Affected products

Six Offene Systeme Gmbh/Sixcms
cpe:2.3:a:six_offene_systeme_gmbh:sixcms:*:*:*:*:*:*:*:*
Range: <=6.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

securitytracker.com/idnvdExploit
www.majorsecurity.de/advisory/major_rls17.txtnvdExploitVendor Advisory
www.securityfocus.com/bid/18393nvdExploit
secunia.com/advisories/20655nvdVendor Advisory
securityreason.com/securityalert/1101nvd
www.securityfocus.com/archive/1/437047/100/0/threadednvd
www.securityfocus.com/archive/1/437639/100/0/threadednvd
www.vupen.com/english/advisories/2006/2386nvd
exchange.xforce.ibmcloud.com/vulnerabilities/27108nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000