exploitDog

CVE-2005-0883

Опубликовано: 23 мар. 2005

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Multiple cross-site scripting (XSS) vulnerabilities in base.php for DigitalHive 2.0 allow remote attackers to inject arbitrary web script or HTML via (1) the mt parameter to the membres.php page or (2) the -afs-1- query string to the msg.php page.

Ссылки

http://secunia.com/advisories/14702
Vendor Advisory
http://securitytracker.com/id?1013516
Vendor Advisory
http://www.securityfocus.com/bid/12883
Exploit
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/19803
http://secunia.com/advisories/14702
Vendor Advisory
http://securitytracker.com/id?1013516
Vendor Advisory
http://www.securityfocus.com/bid/12883
Exploit
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/19803

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:digitalhive:digitalhive:2.0:*:*:*:*:*:*:*

EPSS

Процентиль: 63%

0.00445

Низкий

4.3 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-7242-7v45-rq84

github

почти 4 года назад

Multiple cross-site scripting (XSS) vulnerabilities in base.php for DigitalHive 2.0 allow remote attackers to inject arbitrary web script or HTML via (1) the mt parameter to the membres.php page or (2) the -afs-1- query string to the msg.php page.

EPSS

Процентиль: 63%

0.00445

Низкий

4.3 Medium

CVSS2

Дефекты

NVD-CWE-Other