5.8 Medium
AI Score
Confidence
High
0.007 Low
EPSS
Percentile
79.9%
Multiple cross-site scripting (XSS) vulnerabilities in CreaScripts Creadirectory allow remote attackers to inject arbitrary web script or HTML via the (1) cat parameter to addlisting.asp or the (2) search parameter to search.asp.
s-a-p.ca/index.php?page=OurAdvisories&id=54
secunia.com/advisories/23067
securityreason.com/securityalert/1907
www.securityfocus.com/archive/1/452241/100/0/threaded
www.securityfocus.com/bid/21230
www.vupen.com/english/advisories/2006/4665
exchange.xforce.ibmcloud.com/vulnerabilities/30473