CVE-2005-4460

2005-12-2120:00:00

mitre

www.cve.org

5.6 Medium

AI Score

Confidence

High

0.022 Low

EPSS

Percentile

89.6%

JSON

Cross-site scripting (XSS) vulnerability in Beehive Forum 0.6.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) Name, (2) Description, and (3) Comment fields to (a) links.php and (b) links_add.php.

References

cvs.sourceforge.net/viewcvs.py/beehiveforum/beehiveforum/forum/index.php?rev=1.121&view=log

secunia.com/advisories/18154

www.securityfocus.com/archive/1/419988/100/0/threaded

www.securityfocus.com/bid/16002

www.vupen.com/english/advisories/2005/3043

exchange.xforce.ibmcloud.com/vulnerabilities/23879