Lucene search

MitreCVE-2005-1483

HistoryMay 11, 2005 - 4:00 a.m.

CVE-2005-1483

2005-05-1104:00:00

mitre

web.nvd.nist.gov

articlelive 2005

xss

remote attack

script injection

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.8

Confidence

High

EPSS

0.01

Percentile

84.0%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in ArticleLive 2005 allow remote attackers to inject arbitrary web script or HTML via the (1) Query, (2) Username, (3) LastName, (4) Biography, or (5) BlogId parameter.

Affected configurations

Nvd

Node

interspirearticleliveMatch2005

VendorProductVersionCPE
interspirearticlelive2005cpe:2.3:a:interspire:articlelive:2005:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
interspire	articlelive	2005	cpe:2.3:a:interspire:articlelive:2005:::::::*

References

marc.info/?l=bugtraq&m=111530871724865&w=2

secunia.com/advisories/15250

securitytracker.com/id?1013895

www.osvdb.org/16183

www.securityfocus.com/bid/13493

exchange.xforce.ibmcloud.com/vulnerabilities/20430

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.8

Confidence

High

EPSS

0.01

Percentile

84.0%

JSON

Related for CVE-2005-1483