CVE-2005-4241

Cross-site scripting (XSS) vulnerability in the category page in VCD-db 0.98 and earlier allows remote attackers to inject arbitrary web script or HTML via the batch parameter.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:vcd-db:vcd-db:0.97:*:*:*:*:*:*:*
cpe:2.3:a:vcd-db:vcd-db:0.98:*:*:*:*:*:*:*
cpe:2.3:a:vcd-db:vcd-db:0.961:*:*:*:*:*:*:*
cpe:2.3:a:vcd-db:vcd-db:0.971:*:*:*:*:*:*:*
cpe:2.3:a:vcd-db:vcd-db:0.972:*:*:*:*:*:*:*
cpe:2.3:a:vcd-db:vcd-db:0.973:*:*:*:*:*:*:*

History

21 Nov 2024, 00:03

Type Values Removed Values Added
References () http://pridels0.blogspot.com/2005/12/vcd-db-vuln.html - () http://pridels0.blogspot.com/2005/12/vcd-db-vuln.html -
References () http://secunia.com/advisories/18034 - () http://secunia.com/advisories/18034 -
References () http://www.osvdb.org/21700 - () http://www.osvdb.org/21700 -
References () http://www.securityfocus.com/bid/15840 - Exploit () http://www.securityfocus.com/bid/15840 - Exploit
References () http://www.vupen.com/english/advisories/2005/2885 - () http://www.vupen.com/english/advisories/2005/2885 -

Information

Published : 2005-12-14 11:03

Updated : 2024-11-21 00:03


NVD link : CVE-2005-4241

Mitre link : CVE-2005-4241

CVE.ORG link : CVE-2005-4241


JSON object : View

Products Affected

vcd-db

  • vcd-db