Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-4607

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2005-4607
Last Modified 07 Mar 2011 09:28:38
Published 31 Dec 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2005-4607

Summary

Cross-site scripting (XSS) vulnerability in index.php in BugPort 1.147 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) ids[0], (2) action, (3) report_id, (4) devWherePair[1][1], and (5) binds[0] parameters.

Vulnerable Systems

Application

  • Incogen Bugport 1.039

  • Incogen Bugport 1.040

  • Incogen Bugport 1.041

  • Incogen Bugport 1.042

  • Incogen Bugport 1.043

  • Incogen Bugport 1.044

  • Incogen Bugport 1.045

  • Incogen Bugport 1.046

  • Incogen Bugport 1.047

  • Incogen Bugport 1.048

  • Incogen Bugport 1.049

  • Incogen Bugport 1.050

  • Incogen Bugport 1.051

  • Incogen Bugport 1.052

  • Incogen Bugport 1.053

  • Incogen Bugport 1.054

  • Incogen Bugport 1.055

  • Incogen Bugport 1.056

  • Incogen Bugport 1.057

  • Incogen Bugport 1.058

  • Incogen Bugport 1.059

  • Incogen Bugport 1.060

  • Incogen Bugport 1.061

  • Incogen Bugport 1.062

  • Incogen Bugport 1.063

  • Incogen Bugport 1.064

  • Incogen Bugport 1.065

  • Incogen Bugport 1.066

  • Incogen Bugport 1.067

  • Incogen Bugport 1.068

  • Incogen Bugport 1.069

  • Incogen Bugport 1.070

  • Incogen Bugport 1.071

  • Incogen Bugport 1.072

  • Incogen Bugport 1.073

  • Incogen Bugport 1.074

  • Incogen Bugport 1.075

  • Incogen Bugport 1.076

  • Incogen Bugport 1.077

  • Incogen Bugport 1.078

  • Incogen Bugport 1.079

  • Incogen Bugport 1.080

  • Incogen Bugport 1.081

  • Incogen Bugport 1.082

  • Incogen Bugport 1.083

  • Incogen Bugport 1.084

  • Incogen Bugport 1.085

  • Incogen Bugport 1.086

  • Incogen Bugport 1.087

  • Incogen Bugport 1.088

  • Incogen Bugport 1.089

  • Incogen Bugport 1.090

  • Incogen Bugport 1.091

  • Incogen Bugport 1.092

  • Incogen Bugport 1.093

  • Incogen Bugport 1.094

  • Incogen Bugport 1.095

  • Incogen Bugport 1.096

  • Incogen Bugport 1.097

  • Incogen Bugport 1.098

  • Incogen Bugport 1.099

  • Incogen Bugport 1.100

  • Incogen Bugport 1.101

  • Incogen Bugport 1.102

  • Incogen Bugport 1.103

  • Incogen Bugport 1.104

  • Incogen Bugport 1.105

  • Incogen Bugport 1.106

  • Incogen Bugport 1.107

  • Incogen Bugport 1.108

  • Incogen Bugport 1.109

  • Incogen Bugport 1.110

  • Incogen Bugport 1.111

  • Incogen Bugport 1.112

  • Incogen Bugport 1.113

  • Incogen Bugport 1.114

  • Incogen Bugport 1.115

  • Incogen Bugport 1.116

  • Incogen Bugport 1.117

  • Incogen Bugport 1.118

  • Incogen Bugport 1.119

  • Incogen Bugport 1.120

  • Incogen Bugport 1.121

  • Incogen Bugport 1.122

  • Incogen Bugport 1.123

  • Incogen Bugport 1.124

  • Incogen Bugport 1.125

  • Incogen Bugport 1.126

  • Incogen Bugport 1.127

  • Incogen Bugport 1.128

  • Incogen Bugport 1.129

  • Incogen Bugport 1.130

  • Incogen Bugport 1.131

  • Incogen Bugport 1.132

  • Incogen Bugport 1.133

  • Incogen Bugport 1.134

  • Incogen Bugport 1.135

  • Incogen Bugport 1.136

  • Incogen Bugport 1.137

  • Incogen Bugport 1.138

  • Incogen Bugport 1.139

  • Incogen Bugport 1.140

  • Incogen Bugport 1.141

  • Incogen Bugport 1.142

  • Incogen Bugport 1.143

  • Incogen Bugport 1.144

  • Incogen Bugport 1.145

  • Incogen Bugport 1.146

  • Incogen Bugport 1.147


References

VUPEN - ADV-2006-0009

SECUNIA - 18282

XF - bugport-index-xss(23920)

BID - 16123

OSVDB - 22143

MISC - http://pridels0.blogspot.com/2005/12/bugport-multiple-vuln.html


Last Updated: 27 May 2016 10:41:22