CVE-2005-2324

2022-10-0316:22:49

mitre

www.cve.org

cross-site scripting

remote attackers

web script injection

html injection

search parameters

5.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

45.9%

JSON

Cross-site scripting (XSS) vulnerability in Clever Copy 2.0 and 2.0a allows remote attackers to inject arbitrary web script or HTML via the searchtype or searchterm parameters to (1) results.php or (2) categorysearch.php.

References

lostmon.blogspot.com/2005/07/clever-copy-path-disclosure-and-xss.html