5
CVE-2005-4455
- EPSS 1.04%
- Veröffentlicht 21.12.2005 11:03:00
- Zuletzt bearbeitet 16.06.2026 22:18:49
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Logincleanhtml.pl 1.129 in LiveJournal CVS before Dec 13 2005 allows remote attackers to inject scripting languages via the XSL namespace in XML, via vectors such as customview.cgi.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.04% | 0.595 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:P/A:N
|
http://cvs.livejournal.org/browse.cgi/livejournal/cgi-bin/cleanhtml.pl
http://secunia.com/advisories/18157