exploitDog

CVE-2005-0480

Опубликовано: 30 мар. 2005

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in TrackerCam 5.12 and earlier allows remote attackers to inject arbitrary HTML or web script via the login request, which is recorded in a log file but not properly handled when the administrator views the log file.

Ссылки

http://www.securityfocus.com/archive/1/390918
Exploit
Vendor Advisory
http://www.securityfocus.com/bid/12592
Exploit
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/19416
http://www.securityfocus.com/archive/1/390918
Exploit
Vendor Advisory
http://www.securityfocus.com/bid/12592
Exploit
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/19416

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:trackercam:trackercam:*:*:*:*:*:*:*:*

Версия до 5.12 (включая)

EPSS

Процентиль: 62%

0.0043

Низкий

4.3 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-wchg-mr54-w68q

github

почти 4 года назад

Cross-site scripting (XSS) vulnerability in TrackerCam 5.12 and earlier allows remote attackers to inject arbitrary HTML or web script via the login request, which is recorded in a log file but not properly handled when the administrator views the log file.

EPSS

Процентиль: 62%

0.0043

Низкий

4.3 Medium

CVSS2

Дефекты

NVD-CWE-Other