CVE-2005-4398

NOTE: the vendor has disputed this issue. Cross-site scripting XSS vulnerability in lemoon 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters, possibly the q parameter. NOTE: the vendor has disputed this issue, saying "Sites are built ...

CVE-2005-4398

The CVE-2005-4398 entry concerns lemoon 2.0 and earlier, with a cross-site scripting (XSS) vulnerability. The root cause is a flaw in a UserControl that handles form input, which is part of a custom site built on lemoon rather than the lemoon core product. Impact stated: ability for remote attack...

PT-2005-5084 · Lemoon · Lemoon

Name of the Vulnerable Software and Affected Versions: lemoon versions 2.0 and earlier Description: A cross-site scripting XSS issue allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters, possibly the q parameter. The vendor has disputed this issue,...

lemoon(r) XSS vuln

lemoonr XSS vuln Vuln. discovered by : r0t Date: 18 dec. 2005 orginal advisory:http://pridels.blogspot.com/2005/12/lemoon-xss-vuln.html vendor:http://www.mindroute.us/?id=426 affected version: 2.0 and prior Product Description: lemoonr is a fully packaged CM software solution that combines...