CVE-2006-1634

LucidCMS 2.0.0 RC4 - XSS

Title source: llm
STIX 2.1

Description

Cross-site scripting (XSS) vulnerability in index.php in LucidCMS 2.0.0 RC4 allows remote attackers to inject arbitrary web script or HTML via the command parameter.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Rusydi Hasan · textwebappsphp
https://www.exploit-db.com/exploits/27563

References (3)

Core 3
Core References
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/17360
Exploit mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/429744
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/25632

Scores

EPSS 0.0040
EPSS Percentile 60.7%

Details

Status published
Products (1)
lucidcms/lucidcms 2.0.0_rc4
Published Apr 06, 2006
Tracked Since Feb 18, 2026