| ID |
CVE-2005-2721
|
| Summary |
Multiple cross-site scripting (XSS) vulnerabilities in (1) index.php or (2) admin.php in Foojan PHP Weblog allow remote attackers to inject arbitrary web script or HTML via the Referer field in the HTTP header. |
| References |
|
| Vulnerable Configurations |
|
| CVSS |
| Base: | 4.3 (as of 11-07-2017 - 01:32) |
| Impact: | |
| Exploitability: | |
|
| CWE |
NVD-CWE-Other |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
| NETWORK |
MEDIUM |
NONE |
|
| Impact |
| Confidentiality | Integrity | Availability |
| NONE |
PARTIAL |
NONE |
|
| cvss-vector
via4
|
AV:N/AC:M/Au:N/C:N/I:P/A:N
|
| refmap
via4
|
| bid | 14658 | | bugtraq | 20050824 Foojan PHP Weblog Information Disclosure - Refferer Html Injection | | secunia | 16565 | | xf | foojan-referer-code-execution(22004) |
|
| Last major update |
11-07-2017 - 01:32 |
| Published |
30-08-2005 - 11:45 |
| Last modified |
11-07-2017 - 01:32 |
