CVE-2005-4372

2005-12-2002:00:00

mitre

www.cve.org

5.7 Medium

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

80.0%

JSON

Cross-site scripting (XSS) vulnerability in account.html in Adaptive Website Framework (AWF) 2.10 and earlier allows remote attackers to inject arbitrary web script or HTML via the page parameter.

References

pridels0.blogspot.com/2005/12/awf-adaptive-website-framework-vuln.html

www.awf-cms.org/news.html

www.osvdb.org/21914

www.securityfocus.com/bid/15937

www.vupen.com/english/advisories/2005/2973