CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Everyauction: Security Vulnerabilities

CVE-2005-4229

Cross-site scripting (XSS) vulnerability in auction.pl in EveryAuction 1.53 and earlier allows remote attackers to inject arbitrary web script or HTML via the searchstring parameter. NOTE: the provenance of this issue is unknown; the details were obtained solely from third party sources and independently verified using source code inspection.

CVSS Score

4.3

EPSS Score

0.006

Published

2005-12-14

Page 1

Vulnerabilities

Vulnerable Software

Everyauction: Security Vulnerabilities

Products

Pricing

Contact Us