Vulnerability Details CVE-2005-2441
Multiple cross-site scripting (XSS) vulnerabilities in VBzoom allow remote attackers to inject arbitrary web script and HTML via the (1) UserName parameter to profile.php or (2) UserID parameter to login.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.009
EPSS Ranking 74.0%
CVSS Severity
CVSS v2 Score 4.3
References
- http://marc.info/?l=bugtraq&m=112300586019568&w=2
- http://secunia.com/advisories/16220
- http://securitytracker.com/id?1014614
- http://www.osvdb.org/18662
- http://www.osvdb.org/18663
- http://www.securityfocus.com/archive/1/426874/100/0/threaded
- http://www.securityfocus.com/bid/14423
- https://exchange.xforce.ibmcloud.com/vulnerabilities/21680
- http://marc.info/?l=bugtraq&m=112300586019568&w=2
- http://secunia.com/advisories/16220
- http://securitytracker.com/id?1014614
- http://www.osvdb.org/18662
- http://www.osvdb.org/18663
- http://www.securityfocus.com/archive/1/426874/100/0/threaded
- http://www.securityfocus.com/bid/14423
- https://exchange.xforce.ibmcloud.com/vulnerabilities/21680