Lucene search
HistoryJul 26, 2005 - 4:00 a.m.
CVE-2005-2380
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
6.2
Confidence
High
EPSS
0.003
Percentile
69.2%
Multiple cross-site scripting vulnerabilities in PHP Surveyor 0.98 allow remote attackers to inject arbitrary web script or HTML via the (1) sid, (2) start, and (3) id parameters to browse.php, or the sid parameter to (4) dataentry.php or (5) export.php.
Affected configurations
Node
php_surveyorphp_surveyorMatch0.98
| Vendor | Product | Version | CPE |
|---|---|---|---|
| php_surveyor | php_surveyor | 0.98 | cpe:2.3:a:php_surveyor:php_surveyor:0.98:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2005-2380
2005-07-26 04:00:00
cve
cve
CVE-2005-2380
2005-07-26 04:00:00
openvas
openvas
PHP Surveyor Multiple Vulnerabilities - Active Check
2006-03-26 00:00:00
nessus
nessus
PHP Surveyor Multiple Vulnerabilities
2005-08-24 00:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
6.2
Confidence
High
EPSS
0.003
Percentile
69.2%
Related for NVD:CVE-2005-2380