Описание
Cross-site scripting (XSS) vulnerability in SearchFeed Search Engine 1.3.2 and earlier allows remote attackers to inject arbitrary HTML and web script, possibly via the REQ parameter, which is used when performing a search.
Cross-site scripting (XSS) vulnerability in SearchFeed Search Engine 1.3.2 and earlier allows remote attackers to inject arbitrary HTML and web script, possibly via the REQ parameter, which is used when performing a search.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2005-3866
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23348
- http://pridels0.blogspot.com/2005/11/searchfeed-search-engine-xss-vuln.html
- http://secunia.com/advisories/17715
- http://www.osvdb.org/21144
- http://www.securityfocus.com/bid/15612
- http://www.vupen.com/english/advisories/2005/2609
EPSS
Процентиль: 70%
0.00622
Низкий
CVE ID
Связанные уязвимости
nvd
около 20 лет назад
Cross-site scripting (XSS) vulnerability in SearchFeed Search Engine 1.3.2 and earlier allows remote attackers to inject arbitrary HTML and web script, possibly via the REQ parameter, which is used when performing a search.
EPSS
Процентиль: 70%
0.00622
Низкий