CVE-2005-3436

CVE-2005-3436

EPSS 1.3%

Cross-site scripting (XSS) vulnerability in Nuked-Klan 1.7 allows remote attackers to inject arbitrary web script or HTML via the (1) Search module, (2) certain edit fields in Guestbook, (3) the title in the Forum module, and (4) Textbox.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://marc.info/?l=bugtraq&m=112991421210577&w=2 http://secunia.com/advisories/17304/http://securityreason.com/securityalert/104 https://exchange.xforce.ibmcloud.com/vulnerabilities/22873 http://www.securityfocus.com/bid/15166 http://www.vupen.com/english/advisories/2005/2189