CVE-2005-3972 in Extreme Searchinfo

Summary

Cross-site scripting (XSS) vulnerability in extremesearch.php in Extreme Search Corporate Edition 6.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the search parameter.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Responsible

Reservation

12/03/2005

Disclosure

12/03/2005

Moderation

VulDB entry created

Entries

VDB-27251

CPE

ready

CWE

CWE-80 (Confirmed)

Exploit

Download

CVSS

4.3

EPSS

0.00513

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2005-3972
NVD	https://nvd.nist.gov/vuln/detail/CVE-2005-3972
CVE Details	https://www.cvedetails.com/cve/CVE-2005-3972/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!