CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2005-4858

Multiple cross-site scripting (XSS) vulnerabilities in mimic2.cgi in mimicboard2 (Mimic2) 086 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified parameters associated with the (1) name, (2) title, and (3) comment sections, as demonstrated by referencing a remote document through the SRC attribute of an IFRAME element.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 33.3%

CVSS Severity

CVSS v2 Score 4.3

References

http://exploitlabs.com/files/advisories/EXPL-A-2005-013-mimic2.txt
http://www.securityfocus.com/bid/14778
http://exploitlabs.com/files/advisories/EXPL-A-2005-013-mimic2.txt
http://www.securityfocus.com/bid/14778

Products affected by CVE-2005-4858

Chitta » Mimicboard 2 » Version: Any

cpe:2.3:a:chitta:mimicboard_2:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-4858

Products

Pricing

Contact Us