Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-1715

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2005-1715
Last Modified 05 Sep 2008 04:49:52
Published 24 May 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2005-1715

Summary

Cross-site scripting (XSS) vulnerability in index.php for TOPo 2.2 (2.2.178) allows remote attackers to inject arbitrary web script or HTML via the (1) m, (2) s, (3) ID, or (4) t parameters, or the (5) field name, (6) Your Web field, or (7) email field in the comments section.

Vulnerable Systems

Application

  • Ej3 Topo 2.2

  • Ej3 Topo 2.2.178


References

MISC - http://lostmon.blogspot.com/2005/05/topo-22-multiple-variable-fields-xss.html

BID - 13701

BID - 13700

OSVDB - 16699

SECTRACK - 1014016

SECUNIA - 15325


Last Updated: 27 May 2016 10:40:16