CVE-2005-4383

by Fred · 19/12/2005

Cross-site scripting (XSS) vulnerability in index.cfm in CitySoft Community Enterprise 4.x allows remote attackers to inject arbitrary web script or HTML via the (1) presentationSite, (2) docPublishYear, (3) docDescription, (4) publishState, (5) docAuthor, (6) docTitle, (7) subTopic, (8) topic, (9) topicRadio, (10) topicOnly, (11) startrow, and (12) sortby parameters.

Date published : 2005-12-19

http://pridels0.blogspot.com/2005/12/community-enterprise-4x-multiple-vuln.html

http://www.osvdb.org/21856

CVE-2005-4383

Similar

Recent Posts

Categories

CVE-2005-4383

Share this:

Similar

Recent Posts

Categories

Tags