Lucene search

K

MitreCVELIST:CVE-2005-3334

HistoryOct 27, 2005 - 4:00 a.m.

CVE-2005-3334

2005-10-2704:00:00

mitre

www.cve.org

3

AI Score

5.5

Confidence

High

EPSS

0.008

Percentile

82.1%

Cross-site scripting (XSS) vulnerability in index.php in Flyspray 0.9.7 through 0.9.8 (devel) allows remote attackers to inject arbitrary web script or HTML via the (1) PHPSESSID, (2) task, (3) string, (4) type, (5) serv, (6) due, (7) dev, and (8) sort2 parameters.

References

flyspray.rocks.cc/bts/task/703

lostmon.blogspot.com/2005/10/flyspray-bug-killer-multiple-variable.html

secunia.com/advisories/17316

secunia.com/advisories/18606

www.debian.org/security/2006/dsa-953

www.osvdb.org/20326

www.securityfocus.com/bid/15209

exchange.xforce.ibmcloud.com/vulnerabilities/22889

AI Score

5.5

Confidence

High

EPSS

0.008

Percentile

82.1%

Related for CVELIST:CVE-2005-3334

ubuntucve1 securityvulns1 debian2 osv1 openvas4 nvd1 cve1 exploitdb1 nessus2