CVE-2005-1494

Medium

4.3/10

Summary

Multiple cross-site scripting (XSS) vulnerabilities in admin.cgi in MegaBook 2.0 and 2.1 allow remote attackers to inject arbitrary web script or HTML via the (1) entryid or (2) password parameter.

Access Complexity: MEDIUM
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: PARTIAL
Confidentiality Impact: NONE
Availability Impact: NONE

References

Advisory Timeline

Published May 11, 2005

CVE-2005-1494

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS