CVE-2006-3289

N/A Unknown

Published: June 28, 2006 Modified: April 16, 2026

Description

Cross-site scripting (XSS) vulnerability in the login page of the HTTP interface for the Cisco Wireless Control System (WCS) for Linux and Windows before 3.2(51) allows remote attackers to inject arbitrary web script or HTML via unspecified vectors involving a "malicious URL".

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://secunia.com/advisories/20870

Source: cve@mitre.org

http://securitytracker.com/id?1016398

Source: cve@mitre.org

http://www.cisco.com/warp/public/707/cisco-sa-20060628-wcs.shtml

Source: cve@mitre.org

Patch

http://www.osvdb.org/26880

Source: cve@mitre.org

http://www.securityfocus.com/bid/18701

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2006/2583

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/27441

Source: cve@mitre.org

http://secunia.com/advisories/20870

Source: af854a3a-2127-422b-91ae-364da2661108

http://securitytracker.com/id?1016398

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.cisco.com/warp/public/707/cisco-sa-20060628-wcs.shtml

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://www.osvdb.org/26880

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/18701

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2006/2583

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/27441

Source: af854a3a-2127-422b-91ae-364da2661108

14 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

0.5%

67th percentile

Exploitation Status

Not in CISA KEV

Affected Vendors

cisco