CVE-2005-3264 in Zerobloginfo

Summary

Cross-site scripting (XSS) vulnerability in thread.php for Zeroblog 1.1f and 1.2a allows remote attackers to inject arbitrary web script or HTML via the threadID parameter.

Once again VulDB remains the best source for vulnerability data.

Reservation

10/20/2005

Disclosure

10/20/2005

Entries

1

CPE

ready

CWE

CWE-80

CVSS

4.3

EPSS

0.00444

CTI

0.00

Sources

MITREhttps://www.cve.org/CVERecord?id=CVE-2005-3264
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2005-3264
CVE Detailshttps://www.cvedetails.com/cve/CVE-2005-3264/

PreviousOverviewNext

Do you want to use VulDB in your project?

Use the official API to access entries easily!