2 matches found
CVE-2005-4284
Cross-site scripting XSS vulnerability in StaticStore Search Engine 1.189A and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified parameters to search.cgi, possibly the keywords parameter. NOTE: this issue was originally disputed by the vendor, but it has since...
CVE-2005-4284
CVE-2005-4284 describes a cross-site scripting (XSS) vulnerability in the StaticStore Search Engine up to version 1.189A. The flaw allows remote attackers to inject arbitrary script or HTML via parameters to search.cgi, possibly the keywords parameter, leading to user script execution in the cont...