Lucene search
HistoryJan 03, 2005 - 5:00 a.m.
CVE-2005-0274
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.7
Confidence
High
EPSS
0.004
Percentile
75.0%
Multiple cross-site scripting (XSS) vulnerabilities in showgallery.php in PhotoPost before 4.86 allow remote attackers to inject arbitrary web script or HTML via the (1) cat, (2) si, (3) page, or (4) ppuser parameters.
Affected configurations
Node
photopostphotopost_php_proRange≤4.85
| Vendor | Product | Version | CPE |
|---|---|---|---|
| photopost | photopost_php_pro | * | cpe:2.3:a:photopost:photopost_php_pro:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2005-0274
2005-02-10 05:00:00
openvas
openvas
PhotoPost PHP <= 4.8c Multiple XSS Vulnerabilities - Active Check
2011-03-03 00:00:00
PhotoPost showgallery.php SQL Injection
2005-11-03 00:00:00
cve
cve
CVE-2005-0274
2005-02-10 05:00:00
exploitpack
exploitpack
PhotoPost 4.85 - Multiple Vulnerabilities
2015-01-03 00:00:00
exploitdb
exploitdb
PhotoPost < 4.85 - Multiple Vulnerabilities
2015-01-03 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.7
Confidence
High
EPSS
0.004
Percentile
75.0%
Related for NVD:CVE-2005-0274