|
|
CVE Reference: CVE-2005-4485 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2005-4485 |
|
|
Description: Multiple cross-site scripting (XSS) vulnerabilities in ProjectApp 3.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the keywords parameter to (1) forums.asp, (2) search_employees.asp, (3) cat.asp, and (4) links.asp; (5) projectid parameter to pmprojects.asp, (6) ret_page parameter to login.asp, and (7) skin_number parameter to default.asp. |
|
|
CVE Status: Candidate |
|
|
References: SAID Secunia Advisory: SA18199 OSVDB 21967 21968 21964 21965 21966 21963 21962 MISC http://pridels.blogspot.com/2005/12/projectapp-mutliple-xss-vuln.html BID 16011 |
|
| Return to the previous page. |
