Lucene search
MitreCVE-2005-0274HistoryFeb 10, 2005 - 5:00 a.m.
CVE-2005-0274
2005-02-1005:00:00
mitre
web.nvd.nist.gov
31
cve-2005-0274
cross-site scripting
xss
showgallery.php
photopost
vulnerabilities
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.7
Confidence
High
EPSS
0.004
Percentile
75.0%
Multiple cross-site scripting (XSS) vulnerabilities in showgallery.php in PhotoPost before 4.86 allow remote attackers to inject arbitrary web script or HTML via the (1) cat, (2) si, (3) page, or (4) ppuser parameters.
Affected configurations
Node
photopostphotopost_php_proRange≤4.85
| Vendor | Product | Version | CPE |
|---|---|---|---|
| photopost | photopost_php_pro | * | cpe:2.3:a:photopost:photopost_php_pro:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2005-0274
2005-02-10 05:00:00
openvas
openvas
PhotoPost PHP <= 4.8c Multiple XSS Vulnerabilities - Active Check
2011-03-03 00:00:00
PhotoPost SQLi Vulnerability (Nov 2005) - Active Check
2005-11-03 00:00:00
nvd
nvd
CVE-2005-0274
2005-01-03 05:00:00
exploitpack
exploitpack
PhotoPost 4.85 - Multiple Vulnerabilities
2015-01-03 00:00:00
exploitdb
exploitdb
PhotoPost < 4.85 - Multiple Vulnerabilities
2015-01-03 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.7
Confidence
High
EPSS
0.004
Percentile
75.0%
Related for CVE-2005-0274