Lucene search

K

MitreCVELIST:CVE-2005-0870

HistoryMar 26, 2005 - 5:00 a.m.

CVE-2005-0870

2005-03-2605:00:00

mitre

www.cve.org

2

5.5 Medium

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.8%

Multiple cross-site scripting (XSS) vulnerabilities in phpSysInfo 2.3, when register_globals is enabled, allow remote attackers to inject arbitrary web script or HTML via the (1) sensor_program parameter to index.php, (2) text[language], (3) text[template], or (4) hide_picklist parameter to system_footer.php.

References

bugs.debian.org/cgi-bin/bugreport.cgi?bug=301118

marc.info/?l=bugtraq&m=111161017209422&w=2

secunia.com/advisories/14690/

secunia.com/advisories/17616

secunia.com/advisories/17643

www.debian.org/security/2005/dsa-724

www.debian.org/security/2005/dsa-897

www.debian.org/security/2005/dsa-898

www.debian.org/security/2005/dsa-899

www.mandriva.com/security/advisories?name=MDKSA-2005:212

www.securityfocus.com/archive/1/416543

www.securityfocus.com/bid/12887

www.securityfocus.com/bid/15414

exchange.xforce.ibmcloud.com/vulnerabilities/19807

5.5 Medium

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.8%

Related for CVELIST:CVE-2005-0870

nessus7 ubuntucve1 osv4 openvas10 nvd1 cve1 debian8 debiancve1 freebsd1 packetstorm1 securityvulns1