CVE-2005-4388

CVE-2005-4388

EPSS 1.3%

Cross-site scripting (XSS) vulnerability in search.cfm in CONTENS 3.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the near parameter.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://pridels0.blogspot.com/2005/12/contens-searchcfm-multiple-input.html http://secunia.com/advisories/18143 https://exchange.xforce.ibmcloud.com/vulnerabilities/23820 http://www.osvdb.org/21824 http://www.securityfocus.com/bid/15943 http://www.vupen.com/english/advisories/2005/2981