Search...

CVE-2005-1714

2005-05-24T00:00:00

ID CVE-2005-1714
Type cve
Reporter NVD
Modified 2011-03-07T21:22:43

Description

Cross-site scripting (XSS) vulnerability in NetWin SurgeMail 3.0c2 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.

JSON Vulners Source

Initial Source

{"href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-1714", "history": [], "references": ["http://www.vupen.com/english/advisories/2005/0576"], "lastseen": "2016-09-03T05:28:17", "bulletinFamily": "NVD", "title": "CVE-2005-1714", "cpe": ["cpe:/a:netwin:surgemail:3.0c2"], "viewCount": 0, "id": "CVE-2005-1714", "hash": "3672be11ad79ebdcb253bca6866fa7d8a1d071c37a4d8e6f728a3a790be180eb", "description": "Cross-site scripting (XSS) vulnerability in NetWin SurgeMail 3.0c2 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.", "edition": 1, "assessment": {"name": "", "href": "", "system": ""}, "cvelist": ["CVE-2005-1714"], "scanner": [], "modified": "2011-03-07T21:22:43", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "objectVersion": "1.2", "reporter": "NVD", "type": "cve", "published": "2005-05-24T00:00:00", "enchantments": {"vulnersScore": 4.3}}

{"result": {"osvdb": [{"id": "OSVDB:16690", "type": "osvdb", "title": "SurgeMail Multiple Unspecified XSS", "description": "# No description provided by the source\n\n## References:\nVendor URL: http://www.netwinsite.com/surgemail/\nVendor Specific News/Changelog Entry: http://www.netwinsite.com/surgemail/help/updates.htm\n[Secunia Advisory ID:15425](https://secuniaresearch.flexerasoftware.com/advisories/15425/)\n[CVE-2005-1714](https://vulners.com/cve/CVE-2005-1714)\n", "published": "2005-05-19T10:31:41", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "href": "https://vulners.com/osvdb/OSVDB:16690", "cvelist": ["CVE-2005-1714"], "lastseen": "2017-04-28T13:20:12"}], "nessus": [{"id": "SURGEMAIL_30C2.NASL", "type": "nessus", "title": "SurgeMail <= 3.0c2 Multiple XSS", "description": "According to its banner, the remote host is running SurgeMail version 3.0c2 or earlier. These versions reportedly are prone to multiple cross-site scripting issues, which an attacker could exploit to inject arbitrary HTML and script code into a user's browser to be processed within the context of the affected website.", "published": "2005-05-20T00:00:00", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=18354", "cvelist": ["CVE-2005-1714"], "lastseen": "2016-09-26T17:25:44"}]}}