CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2005-1135

Cross-site scripting (XSS) vulnerability in search.php for Simple PHP Blog (sphpBlog) 0.4.0 allows remote attackers to inject arbitrary web script or HTML via the q parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 60.8%

CVSS Severity

CVSS v2 Score 4.3

References

http://echo.or.id/adv/adv12-y3dips-2005.txt
http://marc.info/?l=bugtraq&m=111359320312609&w=2
http://www.securityfocus.com/bid/13170
http://www.waraxe.us/ftopict-651.html
http://echo.or.id/adv/adv12-y3dips-2005.txt
http://marc.info/?l=bugtraq&m=111359320312609&w=2
http://www.securityfocus.com/bid/13170
http://www.waraxe.us/ftopict-651.html

Products affected by CVE-2005-1135

Alexander Palmo » Simple Php Blog » Version: 0.4.0

cpe:2.3:a:alexander_palmo:simple_php_blog:0.4.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-1135

Products

Pricing

Contact Us