GCVE - cpe:2.3:a:sitecore:cms:6.0.1:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:sitecore:cms:6.0.1:*:*:*:*:*:*:*

part: a version: 6.0.1 update: *

Vendor	Sitecore (`a7d448aa-2b42-539c-981e-05d11ea00680`)
Product	Cms (`029dfde3-97a8-56e9-a7c3-0a68bd2334ee`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2009-2163`	vulnerable	2026-06-03 14:29:39.621851	Details available Cross-site scripting (XSS) vulnerability in login/default.aspx in Sitecore CMS before 6.0.2 Update-1 090507 allows remote attackers to inject arbitrary web script or HTML via the sc_error parameter. Published: 2009-06-22T20:00:00.000Z Updated: 2024-08-07T05:44:55.583Z Open on db.gcve.eu Reference links http://www.securityfocus.com/archive/1/504093/100/0/threaded http://www.securityfocus.com/archive/1/504132/100/0/threaded http://secunia.com/advisories/35353 http://forum.intern0t.net/intern0t-advisories/1082-intern0t-sitecore-net-6-0-0-cross-site-scripting-vulnerability.html	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.