4.3
CVE-2005-4282
- EPSS 1.18%
- Veröffentlicht 16.12.2005 11:03:00
- Zuletzt bearbeitet 16.06.2026 22:18:30
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginCross-site scripting (XSS) vulnerability in Zaygo DomainCart 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML, possibly via the root parameter to zaygo.cgi.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Zaygo ≫ Domaincart Version <= 2.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.18% | 0.635 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:N/I:P/A:N
|
http://www.osvdb.org/21729
http://pridels0.blogspot.com/2005/12/domaincart-xss.html
http://secunia.com/advisories/18035
http://www.securityfocus.com/bid/15893
http://www.vupen.com/english/advisories/2005/2917