Unrated severityNVD Advisory· Published Sep 21, 2006· Updated Apr 16, 2026
CVE-2006-4909
CVE-2006-4909
Description
Cross-site scripting (XSS) vulnerability in Cisco Guard DDoS Mitigation Appliance before 5.1(6), when anti-spoofing is enabled, allows remote attackers to inject arbitrary web script or HTML via certain character sequences in a URL that are not properly handled when the appliance sends a meta-refresh.
Affected products
1- cpe:2.3:h:cisco:guard_ddos_mitigation_appliance:*:*:*:*:*:*:*:*Range: <=5.1\(5\)
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7News mentions
0No linked articles in our index yet.