CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-4627

Cross-site scripting (XSS) vulnerability in index.php in (1) GmailSite 1.0 through 1.0.4 and (2) GFHost 0.1.1 through 0.4.2 allows remote attackers to inject arbitrary web script or HTML via the lng parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 72.3%

CVSS Severity

CVSS v2 Score 4.3

References

Products affected by CVE-2005-4627

Gfhost » Gfhost » Version: 0.1.1

cpe:2.3:a:gfhost:gfhost:0.1.1
Gfhost » Gfhost » Version: 0.2

cpe:2.3:a:gfhost:gfhost:0.2
Gfhost » Gfhost » Version: 0.3

cpe:2.3:a:gfhost:gfhost:0.3
Gfhost » Gfhost » Version: 0.4

cpe:2.3:a:gfhost:gfhost:0.4
Gfhost » Gfhost » Version: 0.4.1

cpe:2.3:a:gfhost:gfhost:0.4.1
Gfhost » Gfhost » Version: 0.4.2

cpe:2.3:a:gfhost:gfhost:0.4.2
Gmailsite » Gmailsite » Version: 1.0

cpe:2.3:a:gmailsite:gmailsite:1.0
Gmailsite » Gmailsite » Version: 1.0.1

cpe:2.3:a:gmailsite:gmailsite:1.0.1
Gmailsite » Gmailsite » Version: 1.0.2

cpe:2.3:a:gmailsite:gmailsite:1.0.2
Gmailsite » Gmailsite » Version: 1.0.3

cpe:2.3:a:gmailsite:gmailsite:1.0.3
Gmailsite » Gmailsite » Version: 1.0.4

cpe:2.3:a:gmailsite:gmailsite:1.0.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-4627

Products

Pricing

Contact Us