5.8 Medium
AI Score
Confidence
High
0.035 Low
EPSS
Percentile
91.6%
Multiple cross-site scripting (XSS) vulnerabilities in EditTag 1.2 allow remote attackers to inject arbitrary web script or HTML via the plain parameter to (1) mkpw_mp.cgi, (2) mkpw.pl, or (3) mkpw.cgi.
osvdb.org/33390
osvdb.org/33391
osvdb.org/33392
secunia.com/advisories/7950
www.securityfocus.com/archive/1/456055/100/0/threaded
www.securityfocus.com/bid/21891