CVE-2005-4167

2005-12-11T16:03:00
ID CVE-2005-4167
Type cve
Reporter NVD
Modified 2008-09-05T16:56:13

Description

Cross-site scripting (XSS) vulnerability in eFiction 1.0 and 1.1 allows remote attackers to inject arbitrary web script or HTML via the let parameter in a viewlist action to titles.php.