CVE-2005-0919

Опубликовано: 29 мар. 2005

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Adventia Chat 3.1 and Server Pro 3.0 allows remote attackers to inject arbitrary web script or HTML into the chat space, which leaves other users vulnerable to cross-site scripting (XSS) attacks.

Ссылки

http://exploitlabs.com/files/advisories/EXPL-A-2005-003-adventiachat.txt
Vendor Advisory
http://marc.info/?l=full-disclosure&m=111211930330410&w=2
http://securitytracker.com/id?1013588
Vendor Advisory
http://www.osvdb.org/15156
http://www.securityfocus.com/bid/12927
Vendor Advisory
http://www.securityfocus.com/bid/12940
https://exchange.xforce.ibmcloud.com/vulnerabilities/21317
http://exploitlabs.com/files/advisories/EXPL-A-2005-003-adventiachat.txt
Vendor Advisory
http://marc.info/?l=full-disclosure&m=111211930330410&w=2
http://securitytracker.com/id?1013588
Vendor Advisory
http://www.osvdb.org/15156
http://www.securityfocus.com/bid/12927
Vendor Advisory
http://www.securityfocus.com/bid/12940
https://exchange.xforce.ibmcloud.com/vulnerabilities/21317

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:adventia:adventia_chat:3.1:*:*:*:*:*:*:*

cpe:2.3:a:adventia:adventia_server_pro:3.0:*:*:*:*:*:*:*

EPSS

Процентиль: 71%

0.00675

Низкий

4.3 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-2ghh-4f9c-3725

github

почти 4 года назад