CVE-2005-0674

2005-03-0705:00:00

mitre

www.cve.org

AI Score

5.8

Confidence

High

EPSS

0.003

Percentile

66.1%

JSON

Cross-site scripting (XSS) vulnerability in the News module for paBox 1.6 allows remote attackers to inject arbitrary web script or HTML via the text hidden parameter in an HTTP POST request.

References

marc.info/?l=bugtraq&m=110987537431541&w=2

secunia.com/advisories/14474

securitytracker.com/id?1013363

www.securityfocus.com/bid/12719