Unrated severityNVD Advisory· Published Jul 18, 2006· Updated Apr 16, 2026
CVE-2006-3609
CVE-2006-3609
Description
Cross-site scripting (XSS) vulnerability in index.php in Orbitcoders OrbitMATRIX 1.0 allows remote attackers to inject arbitrary web script or HTML via the page_name parameter with an IMG tag containing a javascript URI in the SRC attribute.
Affected products
1- cpe:2.3:a:orbitcoders:orbitmatrix:1.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5News mentions
0No linked articles in our index yet.