CVE-2005-4365

Sažetak

Multiple cross-site scripting (XSS) vulnerabilities in FLIP 0.9.0.1029 allow remote attackers to inject arbitrary web script or HTML via the (1) name parameter in text.php and (2) frame parameter in forum.php.

Reference

http://pridels0.blogspot.com/2005/12/flip-xss-vuln.html
http://secunia.com/advisories/18128
http://www.osvdb.org/21788
http://www.osvdb.org/21789
http://www.securityfocus.com/bid/15947
http://www.vupen.com/english/advisories/2005/2987

CVSS

Base:	4.3
Impact:	2.9
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:N/AC:M/Au:N/C:N/I:P/A:N

Zadnje važnije ažuriranje

08-03-2011 - 02:28

Objavljeno

20-12-2005 - 01:03