Lucene search

MitreCVE-2005-3066

HistorySep 27, 2005 - 7:03 p.m.

CVE-2005-3066

2005-09-2719:03:00

mitre

web.nvd.nist.gov

cve-2005-3066

cross-site scripting

xss vulnerability

perldiver.pl

perldiver 1.x

remote attackers

web script

html

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.9

Confidence

High

EPSS

0.01

Percentile

84.3%

JSON

Cross-site scripting (XSS) vulnerability in perldiver.pl in PerlDiver 1.x allows remote attackers to inject arbitrary web script or HTML via the query string. NOTE: this issue was originally disputed by the vendor, but it has since been acknowledged.

Affected configurations

Nvd

Node

scriptsolutionsperldiver

VendorProductVersionCPE
scriptsolutionsperldiver*cpe:2.3:a:scriptsolutions:perldiver:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
scriptsolutions	perldiver	*	cpe:2.3:a:scriptsolutions:perldiver::::::::

References

archives.neohapsis.com/archives/fulldisclosure/2005-09/0543.html

exploitlabs.com/files/advisories/EXPL-A-2005-014-perldiver.txt

securitytracker.com/id?1015146

www.scriptsolutions.com/support/showflat.pl?Board=PDBugs&Number=443

www.scriptsolutions.com/support/showthreaded.pl?Cat=&Board=PDBugs&Number=443&Search=true&Forum=All_Forums&Words=werner&Match=Entire%20Phrase&Searchpage=0&Limit=25&Old=1month&Main=443

www.scriptsolutions.com/support/showthreaded.pl?Cat=&Board=PDBugs&Number=447&page=0&view=collapsed&sb=5&o=186&vc=1#Post447

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.9

Confidence

High

EPSS

0.01

Percentile

84.3%

JSON

Related for CVE-2005-3066