Vulnerability Database

289,784

Total vulnerabilities in the database

CVE-2006-3261

Cross-site scripting (XSS) vulnerability in Trend Micro Control Manager (TMCM) 3.5 allows remote attackers to inject arbitrary web script or HTML via the username field on the login page, which is not properly sanitized before being displayed in the error log.

  • Published: Jun 27, 2006
  • Updated: Apr 13, 2023
  • CVE: CVE-2006-3261
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 4.3
  • AV:N/AC:M/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Software From Fixed in
trend_micro / control_manager 3.5 3.5.x