Ubuntu.comUB:CVE-2005-2430CVE-2005-2430
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.012 Low
EPSS
Percentile
85.0%
Multiple cross-site scripting (XSS) vulnerabilities in GForge 4.5 allow
remote attackers to inject arbitrary web script or HTML via the (1)
forum_id or (2) group_id parameter to forum.php, (3) project_task_id
parameter to task.php, (4) id parameter to detail.php, (5) the text field
on the search page, (6) group_id parameter to qrs.php, (7) form, (8) rows,
(9) cols or (10) wrap parameter to notepad.php, or the login field on the
login form.
Related
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.012 Low
EPSS
Percentile
85.0%