CVE-2005-0945

Medium

4.3/10

Summary

Cross-site scripting (XSS) vulnerability in ACS Blog 1.1.1 allows remote attackers to inject arbitrary web script or HTML via onmouseover or onload events in (1) img, (2) link, or (3) mail tags.

Access Complexity: MEDIUM
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: PARTIAL
Confidentiality Impact: NONE
Availability Impact: NONE

References

Advisory Timeline

Published May 02, 2005

CVE-2005-0945

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS