CVE-2005-2950

2005-09-1604:00:00

mitre

www.cve.org

5.7 Medium

AI Score

Confidence

High

0.012 Low

EPSS

Percentile

85.2%

JSON

Cross-site scripting (XSS) vulnerability in Sawmill 7.0.0 through 7.1.13 allows remote attackers to inject arbitrary web script or HTML via the query string in an HTTP GET request.

References

marc.info/?l=bugtraq&m=112654659400488&w=2

secunia.com/advisories/16744/

securityreason.com/securityalert/1

www.nta-monitor.com/news/xss/sawmill/index.htm

www.sawmill.net/version_history.html

exchange.xforce.ibmcloud.com/vulnerabilities/22206