4 matches found
CVE-2005-4580
Cross-site scripting XSS vulnerability in Day Communique 4 allows remote attackers to inject arbitrary web script or HTML via the query parameter in a search...
CVE-2005-4580
CVE-2005-4580 is a cross-site scripting (XSS) vulnerability in Day Communique 4. The issue allows remote attackers to inject arbitrary web script or HTML via the query parameter used in a search. The description does not provide affected versions, root cause details beyond input reflected in the ...
CVE-2005-4580
Cross-site scripting XSS vulnerability in Day Communique 4 allows remote attackers to inject arbitrary web script or HTML via the query parameter in a search...
Communique 4 XSS vuln.
Communique 4 XSS vuln. Vuln. discovered by : r0t Date: 23 dec. 2005 orginal advisory:http://pridels.blogspot.com/2005/12/communiqu-4-xss-vuln.html vendor:www.day.com/site/en/index.html affected version: 4 and prior Product Description: Communique 4 is the first native JCR JSR 170 standard complia...