CVE-2005-3638

Опубликовано: 16 нояб. 2005

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerabilities in Ekinboard 1.0.3 allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter in profile.php and (2) titles of posts.

Ссылки

http://irannetjob.com/content/view/162/28/
URL Repurposed
http://secunia.com/advisories/17569
http://securitytracker.com/id?1015207
Exploit
Vendor Advisory
http://www.osvdb.org/20844
http://www.securityfocus.com/bid/15443
http://www.securityfocus.com/bid/15447
Exploit
http://www.vupen.com/english/advisories/2005/2419
http://irannetjob.com/content/view/162/28/
URL Repurposed
http://secunia.com/advisories/17569
http://securitytracker.com/id?1015207
Exploit
Vendor Advisory
http://www.osvdb.org/20844
http://www.securityfocus.com/bid/15443
http://www.securityfocus.com/bid/15447
Exploit
http://www.vupen.com/english/advisories/2005/2419

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ekinboard:ekinboard:1.0.3:*:*:*:*:*:*:*

EPSS

Процентиль: 73%

0.00758

Низкий

4.3 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-qr7c-hh68-587x

github

почти 4 года назад