Описание
Cross-site scripting (XSS) vulnerability in index.php in (1) GmailSite 1.0 through 1.0.4 and (2) GFHost 0.1.1 through 0.4.2 allows remote attackers to inject arbitrary web script or HTML via the lng parameter.
Cross-site scripting (XSS) vulnerability in index.php in (1) GmailSite 1.0 through 1.0.4 and (2) GFHost 0.1.1 through 0.4.2 allows remote attackers to inject arbitrary web script or HTML via the lng parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2005-4627
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23912
- http://foros.ojobuscador.com/tema1936.html
- http://lostmon.blogspot.com/2005/12/gmailsite-variable-cross-site.html
- http://secunia.com/advisories/18155
- http://www.osvdb.org/22083
- http://www.securityfocus.com/bid/16081
EPSS
Процентиль: 73%
0.0076
Низкий
CVE ID
Связанные уязвимости
nvd
около 20 лет назад
Cross-site scripting (XSS) vulnerability in index.php in (1) GmailSite 1.0 through 1.0.4 and (2) GFHost 0.1.1 through 0.4.2 allows remote attackers to inject arbitrary web script or HTML via the lng parameter.
EPSS
Процентиль: 73%
0.0076
Низкий