CVE-2005-2402

CVE-2005-2402

EPSS 1.3%

Cross-site scripting (XSS) vulnerability in search.php in PHPSiteSearch 1.7.7d allows remote attackers to inject arbitrary web script or HTML via the query parameter.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://secunia.com/advisories/16156 https://exchange.xforce.ibmcloud.com/vulnerabilities/21463 http://www.osvdb.org/18142 http://www.rgod.altervista.org/PHPSiteSearch177dpoc.txt http://www.securityfocus.com/bid/14344