Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-1233

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2005-1233
Last Modified 07 Mar 2011 09:21:16
Published 20 Apr 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2005-1233

Summary

Cross-site scripting (XSS) vulnerability in index.php in PHP Labs proFile allows remote attackers to inject arbitrary web script or HTML via the (1) dir or (2) file parameters.

Vulnerable Systems

Application

  • Php Labs Profile


References

XF - profile-indexphp-xss(20169)

VUPEN - ADV-2005-0370

MISC - http://www.snkenjoi.com/secadv/secadv7.txt

BID - 13282

BID - 13276

OSVDB - 15697

SECTRACK - 1013756

SECUNIA - 15027


Last Updated: 27 May 2016 10:40:05