Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3514

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2005-3514
Last Modified 05 Sep 2008 04:54:35
Published 06 Nov 2005 06:02:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2005-3514

Summary

Multiple cross-site scripting (XSS) vulnerabilities in Chipmunk Forum script allow remote attackers to inject arbitrary web script or HTML via the forumID parameter to (1) newtopic.php, (2) quote.php, (3) index.php, and (4) reply.php.

Vulnerable Systems

Application

  • Chipmunk Scripts Chipmunk Forum


References

XF - chipmunk-multiple-scripts-xss(22823)

BID - 15149

OSVDB - 20167

OSVDB - 20166

OSVDB - 20165

OSVDB - 20164

SECUNIA - 17239

BUGTRAQ - 20051020 XSS & Path Disclosure in Chipmunk's products

MISC - http://irannetjob.com/content/view/148/28/

SREASON - 96


Last Updated: 27 May 2016 10:40:56