Lucene search
HistoryMay 02, 2005 - 4:00 a.m.
CVE-2005-1309
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.004 Low
EPSS
Percentile
72.0%
Cross-site scripting (XSS) vulnerability in bBlog 0.7.4 allows remote attackers to inject arbitrary web script or HTML via the (1) entry title field or (2) comment body text.
Affected configurations
Node
eaden_mckeebblogMatch0.7.4
Related
cvelist
cvelist
CVE-2005-1309
2005-04-27 04:00:00
ubuntucve
ubuntucve
CVE-2005-1309
2005-05-02 00:00:00
cve
cve
CVE-2005-1309
2005-05-02 04:00:00
nessus
nessus
bBlog <= 0.7.4 Multiple Vulnerabilities (SQLi, XSS)
2005-05-03 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.004 Low
EPSS
Percentile
72.0%
Related for NVD:CVE-2005-1309