CVE-2005-2488
N/A
N/A
Summary
Cross-site scripting (XSS) vulnerability in Web Content Management News System allows remote attackers to inject arbitrary web script or HTML via (1) the strRootpath parameter to validsession.php or (2) the strTable parameter to Admin/News/List.php.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.rgod.altervista.org/webc.html
- http://secunia.com/advisories/16317
- http://www.securityfocus.com/bid/14464
- https://exchange.xforce.ibmcloud.com/vulnerabilities/21689
- http://securitytracker.com/id?1014616
References
- http://www.rgod.altervista.org/webc.html
- http://secunia.com/advisories/16317
- http://www.securityfocus.com/bid/14464
- https://exchange.xforce.ibmcloud.com/vulnerabilities/21689
- http://securitytracker.com/id?1014616
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.