CVE-2005-4057

CVE-2005-4057

EPSS 1.2%

Cross-site scripting (XSS) vulnerability in search.php in PluggedOut Nexus 0.1 allows remote attackers to inject arbitrary web script or HTML via the (1) Location, (2) Last Name, and (3) First Name parameters.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://pridels0.blogspot.com/2005/12/pluggedout-nexus-sqlxss-vuln_06.html http://secunia.com/advisories/17909 http://www.osvdb.org/21479 http://www.securityfocus.com/bid/15724 http://www.vupen.com/english/advisories/2005/2751