Lucene search

[email protected]NVD:CVE-2005-2021

HistoryJun 20, 2005 - 4:00 a.m.

CVE-2005-2021

2005-06-2004:00:00

[email protected]

web.nvd.nist.gov

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.002

Percentile

57.6%

JSON

Cross-site scripting (XSS) vulnerability in cPanel 9.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the user parameter in the login page.

Affected configurations

Nvd

Node

cpanelcpanelMatch5.0

cpanelcpanelMatch5.3

cpanelcpanelMatch6.0

cpanelcpanelMatch6.2

cpanelcpanelMatch6.4

cpanelcpanelMatch6.4.1

cpanelcpanelMatch6.4.2

cpanelcpanelMatch6.4.2_stable_48

cpanelcpanelMatch7.0

cpanelcpanelMatch8.0

cpanelcpanelMatch9.0

cpanelcpanelMatch9.1

VendorProductVersionCPE
cpanelcpanel5.0cpe:2.3:a:cpanel:cpanel:5.0:*:*:*:*:*:*:*
cpanelcpanel5.3cpe:2.3:a:cpanel:cpanel:5.3:*:*:*:*:*:*:*
cpanelcpanel6.0cpe:2.3:a:cpanel:cpanel:6.0:*:*:*:*:*:*:*
cpanelcpanel6.2cpe:2.3:a:cpanel:cpanel:6.2:*:*:*:*:*:*:*
cpanelcpanel6.4cpe:2.3:a:cpanel:cpanel:6.4:*:*:*:*:*:*:*
cpanelcpanel6.4.1cpe:2.3:a:cpanel:cpanel:6.4.1:*:*:*:*:*:*:*
cpanelcpanel6.4.2cpe:2.3:a:cpanel:cpanel:6.4.2:*:*:*:*:*:*:*
cpanelcpanel6.4.2_stable_48cpe:2.3:a:cpanel:cpanel:6.4.2_stable_48:*:*:*:*:*:*:*
cpanelcpanel7.0cpe:2.3:a:cpanel:cpanel:7.0:*:*:*:*:*:*:*
cpanelcpanel8.0cpe:2.3:a:cpanel:cpanel:8.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cpanel	cpanel	5.0	cpe:2.3:a:cpanel:cpanel:5.0:::::::*
cpanel	cpanel	5.3	cpe:2.3:a:cpanel:cpanel:5.3:::::::*
cpanel	cpanel	6.0	cpe:2.3:a:cpanel:cpanel:6.0:::::::*
cpanel	cpanel	6.2	cpe:2.3:a:cpanel:cpanel:6.2:::::::*
cpanel	cpanel	6.4	cpe:2.3:a:cpanel:cpanel:6.4:::::::*
cpanel	cpanel	6.4.1	cpe:2.3:a:cpanel:cpanel:6.4.1:::::::*
cpanel	cpanel	6.4.2	cpe:2.3:a:cpanel:cpanel:6.4.2:::::::*
cpanel	cpanel	6.4.2_stable_48	cpe:2.3:a:cpanel:cpanel:6.4.2_stable_48:::::::*
cpanel	cpanel	7.0	cpe:2.3:a:cpanel:cpanel:7.0:::::::*
cpanel	cpanel	8.0	cpe:2.3:a:cpanel:cpanel:8.0:::::::*

Rows per page:

1-10 of 121

References

www.securityfocus.com/bid/13996

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.002

Percentile

57.6%

JSON

Related for NVD:CVE-2005-2021

cvelist1 nessus1 cve1 exploitdb1