CVE-2006-2174 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2006-2174

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Multiple cross-site scripting (XSS) vulnerabilities in admin/server_day_stats.php in Virtual Hosting Control System (VHCS) allow remote attackers to inject arbitrary web script or HTML via the (1) day, (2) month, or (3) year parameter.

Affected Software

Name	Vendor	Start Version	End Version
Virtual_hosting_control_system	Virtual_hosting_control_system	2.4.7.1 (including)	2.4.7.1 (including)

References

http://secunia.com/advisories/19940
http://securityreason.com/securityalert/832
http://www.aria-security.net/hm/vhcs.txt
http://www.securityfocus.com/archive/1/432711
http://www.securityfocus.com/bid/17790
http://www.vupen.com/english/advisories/2006/1634
https://exchange.xforce.ibmcloud.com/vulnerabilities/26209