|
|
CVE Reference: CVE-2005-3547 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2005-3547 |
|
|
Description: Cross-site scripting (XSS) vulnerability in Invision Power Board 2.1 allows remote attackers to inject arbitrary web script or HTML via the (1) adsess, (2) name, and (3) description parameters in admin.php, and the (4) ACP Notes, (5) Member Name, (6) Password, (7) Email Address, (8) Components, and multiple other input fields. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/22999 SAID Secunia Advisory: SA17443 OSVDB 20519 20520 20521 20522 20518 20517 20516 MISC http://benji.redkod.org/audits/ipb.2.1.pdf BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/415801/30/0/threaded BID 15344 15345 |
|
| Return to the previous page. |
