Lucene search
MitreCVE-2005-1012HistoryMay 02, 2005 - 4:00 a.m.
CVE-2005-1012
2005-05-0204:00:00
mitre
web.nvd.nist.gov
30
cve-2005-1012
xss
iatek siteenable
web script
html
contenttype parameter
title
description
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.7
Confidence
High
EPSS
0.004
Percentile
73.2%
Cross-site scripting (XSS) vulnerability in Iatek SiteEnable allows remote attackers to inject arbitrary web script or HTML via (1) the contenttype parameter to content.asp, (2) the title, or (3) the description.
Affected configurations
Node
iateksiteenable
| Vendor | Product | Version | CPE |
|---|---|---|---|
| iatek | siteenable | * | cpe:2.3:a:iatek:siteenable:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2005-1012
2005-04-08 04:00:00
nvd
nvd
CVE-2005-1012
2005-05-02 04:00:00
nessus
nessus
SiteEnable Multiple Input Validation Vulnerabilities
2005-04-05 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.7
Confidence
High
EPSS
0.004
Percentile
73.2%
Related for CVE-2005-1012