Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2005-4367

Опубликовано: 20 дек. 2005
Источник: nvd
CVSS2: 5.8
EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in register_domain.php in DRZES HMS 3.2 allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters, possibly the "Domain Availability" field. NOTE: this issue was later reported to affect CONTROLzx (renamed from DRZES) 3.3.4.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:fad_solutions:drzes_hms:3.2:*:*:*:*:*:*:*

EPSS

Процентиль: 62%
0.00427
Низкий

5.8 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

github логотип

GHSA-6ch8-h5p5-j54q

github
почти 4 года назад

Cross-site scripting (XSS) vulnerability in register_domain.php in DRZES HMS 3.2 allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters, possibly the "Domain Availability" field. NOTE: this issue was later reported to affect CONTROLzx (renamed from DRZES) 3.3.4.

EPSS

Процентиль: 62%
0.00427
Низкий

5.8 Medium

CVSS2

Дефекты

NVD-CWE-Other