3 matches found
CVE-2005-1945
CVE-2005-1945 affects Invision Blog prior to 1.1.2 Final. The vulnerability resides in the convert_highlite_words function, allowing remote attackers to inject arbitrary web script or HTML via double hex encoded highlight data (XSS). Impact is cross-site scripting with partial integrity impact as...
CVE-2005-1945
Cross-site scripting XSS vulnerability in the converthighlitewords function in Invision Blog before 1.1.2 Final allows remote attackers to inject arbitrary web script or HTML via double hex encoded highlight data...
CVE-2005-1945
Cross-site scripting XSS vulnerability in the converthighlitewords function in Invision Blog before 1.1.2 Final allows remote attackers to inject arbitrary web script or HTML via double hex encoded highlight data...