Vulnerability Details CVE-2005-4547
Cross-site scripting (XSS) vulnerability in home/search.php in eggblog 2.0 allows remote attackers to execute arbitrary SQL commands via the q parameter, as used by the Keyword and Search fields.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 59.4%
CVSS Severity
CVSS v2 Score 4.3
References
- http://pridels0.blogspot.com/2005/12/eggblog-vuln.html
- http://secunia.com/advisories/18212
- http://www.osvdb.org/21909
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23856
- http://pridels0.blogspot.com/2005/12/eggblog-vuln.html
- http://secunia.com/advisories/18212
- http://www.osvdb.org/21909
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23856
Products affected by CVE-2005-4547
-
cpe:2.3:a:epic_designs:eggblog:*