CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2005-3764

The image gallery (imagegallery) component in Exponent CMS 0.96.3 and later versions does not properly check the MIME type of uploaded files, with unknown impact from the preview icon, possibly involving injection of HTML.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 59.9%

CVSS Severity

CVSS v2 Score 10.0

References

http://secunia.com/advisories/17655
http://www.securityfocus.com/archive/1/417218
http://secunia.com/advisories/17655
http://www.securityfocus.com/archive/1/417218

Products affected by CVE-2005-3764

Exponent » Exponent » Version: 0.94

cpe:2.3:a:exponent:exponent:0.94
Exponent » Exponent » Version: 0.95

cpe:2.3:a:exponent:exponent:0.95
Exponent » Exponent » Version: 0.96.1

cpe:2.3:a:exponent:exponent:0.96.1
Exponent » Exponent » Version: 0.96.3

cpe:2.3:a:exponent:exponent:0.96.3
Exponent » Exponent » Version: 0.96.4

cpe:2.3:a:exponent:exponent:0.96.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-3764

Products

Pricing

Contact Us