CVE-2006-0210

Interspire TrackPoint NX < 0.1 - Cross-Site Scripting via Login Username Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-0210. PoCs published by M.Neset KABAKLI.

AI-analyzed exploit summary The provided text describes a cross-site scripting (XSS) vulnerability in TrackPoint NX versions less than 0.1. It explains the issue and provides a sample URL demonstrating the vulnerability, but does not include executable exploit code.

Description

Cross-site scripting (XSS) vulnerability in index.php in Interspire TrackPoint NX before 0.1 allows remote attackers to inject arbitrary web script or HTML via the username parameter when using the Login page.

Exploits (1)

exploitdb WRITEUP VERIFIED
by M.Neset KABAKLI · textwebappsphp
https://www.exploit-db.com/exploits/27070

The provided text describes a cross-site scripting (XSS) vulnerability in TrackPoint NX versions less than 0.1. It explains the issue and provides a sample URL demonstrating the vulnerability, but does not include executable exploit code.

Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Theoretical
Target: TrackPoint NX < 0.1
No auth needed
Prerequisites: A vulnerable version of TrackPoint NX · User interaction to trigger the XSS payload
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (7)

Core 7
Core References
Various Sources x_refsource_confirm
http://www.interspire.com/forum/showthread.php?p=29606
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/16214
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/24112
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/18445
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2006/0175
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/421740/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/22377

Scores

EPSS 0.0194
EPSS Percentile 77.7%

Details

Status published
Products (1)
interspire/trackpoint_nx
Published Jan 14, 2006
Tracked Since Feb 18, 2026