CVE-2005-0674

2005-03-0705:00:00

mitre

www.cve.org

5.8 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

66.1%

JSON

Cross-site scripting (XSS) vulnerability in the News module for paBox 1.6 allows remote attackers to inject arbitrary web script or HTML via the text hidden parameter in an HTTP POST request.

References

marc.info/?l=bugtraq&m=110987537431541&w=2

secunia.com/advisories/14474

securitytracker.com/id?1013363

www.securityfocus.com/bid/12719