Unrated severityNVD Advisory· Published Jul 13, 2006· Updated Jun 16, 2026
CVE-2006-3558
CVE-2006-3558
Description
Multiple cross-site scripting (XSS) vulnerabilities in Arif Supriyanto auraCMS 1.62 allow remote attackers to inject arbitrary web script or HTML via (1) the judul_artikel parameter in teman.php and (2) the title of an article sent to admin, which is displayed when unauthenticated users visit index.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
8- h1.ripway.com/lintah/adv/txt/01-iFX-2006-AuraCMS-v1.62-XSS-Bug.txtnvdExploit
- www.securityfocus.com/bid/18867nvdExploit
- securityreason.com/securityalert/1226nvd
- www.osvdb.org/28200nvd
- www.osvdb.org/28202nvd
- www.securityfocus.com/archive/1/439494/100/0/threadednvd
- exchange.xforce.ibmcloud.com/vulnerabilities/27703nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/27704nvd
News mentions
0No linked articles in our index yet.