Unrated severityNVD Advisory· Published Nov 10, 2006· Updated Apr 23, 2026
CVE-2006-5853
CVE-2006-5853
Description
Cross-site scripting (XSS) vulnerability in logon.aspx in Immediacy CMS (Immediacy .NET CMS) 5.2 allows remote attackers to inject arbitrary web script or HTML via the lang parameter, which is returned to the client in a lang cookie.
Affected products
1- cpe:2.3:a:immediacy:immediacy_.net_cms:5.2:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5News mentions
0No linked articles in our index yet.