← back
CVE-2005-2416

CVE-2005-2416

EPSS 1.8%
Multiple cross-site scripting (XSS) vulnerabilities in Contrexx before 1.0.5 allow remote attackers to inject arbitrary web script or HTML via the (1) term parameter to the search module or (2) title in the blog aggregation module.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://marc.info/?l=bugtraq&m=112206702015439&w=2http://secunia.com/advisories/16169http://securitytracker.com/id?1014554https://exchange.xforce.ibmcloud.com/vulnerabilities/21484https://exchange.xforce.ibmcloud.com/vulnerabilities/21487http://www.hardened-php.net/advisory_112005.59.htmlhttp://www.osvdb.org/18168http://www.osvdb.org/18169http://www.securityfocus.com/bid/14352