Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2441

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2005-2441
Last Modified 05 Sep 2008 04:51:45
Published 03 Aug 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2005-2441

Summary

Multiple cross-site scripting (XSS) vulnerabilities in VBzoom allow remote attackers to inject arbitrary web script and HTML via the (1) UserName parameter to profile.php or (2) UserID parameter to login.php.

Vulnerable Systems

Application

  • Vbzoom


References

XF - vbzoom-profile-login-xss(21680)

BID - 14423

BUGTRAQ - 20060306 SQL injection & XSS IN vbzoom v1.11

OSVDB - 18663

OSVDB - 18662

SECTRACK - 1014614

SECUNIA - 16220

BUGTRAQ - 20050729 VBZoom Cross Site Scripting Vulnerabilities


Last Updated: 27 May 2016 10:40:31