|
 |
|
CVE Reference: CVE-2005-4485
|
|
|
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.
|
|
Original Page at CVE MITRE:
CVE-2005-4485
|
|
Description:
Multiple cross-site scripting (XSS) vulnerabilities in ProjectApp 3.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the keywords parameter to (1) forums.asp, (2) search_employees.asp, (3) cat.asp, and (4) links.asp; (5) projectid parameter to pmprojects.asp, (6) ret_page parameter to login.asp, and (7) skin_number parameter to default.asp.
|
|
CVE Status:
Candidate
|
|
References:
SAID
Secunia Advisory: SA18199
OSVDB
21967
21968
21964
21965
21966
21963
21962
MISC
http://pridels.blogspot.com/2005/12/projectapp-mutliple-xss-vuln.html
BID
16011
|
|
|
Return to the previous page.
|
|
|
Secunia PSI
Scan | Patch | Track
Free Download
|
|
|
Secunia Poll
|
|
|
|
|
 |
|
|
Most Popular Advisories
|
|
|
|
|
|
