CVE-2005-1800

2005-06-0104:00:00

[email protected]

web.nvd.nist.gov

cve-2005-1800

cross-site scripting

xss

jaws glossary

vulnerability

web script

html

nvd

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.7 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

54.1%

JSON

Cross-site scripting (XSS) vulnerability in Jaws Glossary gadget 0.4 to 0.5.1 allows remote attackers to inject arbitrary web script or HTML via the term parameter in a view or ViewTerm action to index.php.

Affected configurations

NVD

Node

clam_anti-virusclamavMatch0.81

clam_anti-virusclamavMatch0.82

clam_anti-virusclamavMatch0.83

clam_anti-virusclamavMatch0.84_rc1

clam_anti-virusclamavMatch0.84_rc2

CPENameOperatorVersion
clam_anti-virus:clamavclam anti-virus clamaveq0.81
clam_anti-virus:clamavclam anti-virus clamaveq0.82
clam_anti-virus:clamavclam anti-virus clamaveq0.83
clam_anti-virus:clamavclam anti-virus clamaveq0.84_rc1
clam_anti-virus:clamavclam anti-virus clamaveq0.84_rc2

CPE	Name	Operator	Version
clam_anti-virus:clamav	clam anti-virus clamav	eq	0.81
clam_anti-virus:clamav	clam anti-virus clamav	eq	0.82
clam_anti-virus:clamav	clam anti-virus clamav	eq	0.83
clam_anti-virus:clamav	clam anti-virus clamav	eq	0.84_rc1
clam_anti-virus:clamav	clam anti-virus clamav	eq	0.84_rc2