CVE-2006-2353

medium

Description

NmConsole/DeviceSelection.asp in Ipswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 Premium allows remote attackers to redirect users to other websites via the (1) sCancelURL and possibly (2) sRedirectUrl parameters.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/26502

http://www.vupen.com/english/advisories/2006/1787

http://www.securityfocus.com/archive/1/433808

http://www.osvdb.org/25473

http://securityreason.com/securityalert/897

http://secunia.com/advisories/20075

Details

Source: Mitre, NVD

Published: 2006-05-15

Updated: 2024-11-21

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N

Severity: Medium

CVSS v3

Base Score: 5.4

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N