← volver
CVE-2005-2322

CVE-2005-2322

EPSS 1.4%
Cross-site scripting (XSS) vulnerability in Class-1 Forum 0.24.4 and 0.23.2, and Clever Copy with forums installed, allows remote attackers to inject arbitrary web script or HTML via the (1) viewuser_id or (2) group parameter to users.php.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://lostmon.blogspot.com/2005/07/class-1-forum-software-cross-site.htmlhttp://secunia.com/advisories/16078http://securitytracker.com/id?1014485http://securitytracker.com/id?1014486http://www.osvdb.org/17920http://www.securityfocus.com/bid/14261