CVE-2005-3556 in PHPList
Riassunto
di VulDB • 15/06/2026
Multiple vulnerabilità cross-site scripting (XSS) in PHPlist 2.10.1 e versioni precedenti consentono ad attaccanti remoti di iniettare script web o HTML arbitrari tramite i seguenti parametri: (1) parametro listname in (a) admin/editlist.php, (2) parametro title in (b) admin/spageedit.php, (3) campo title in (c) admin/template.php, (4) filtro, (5) delete e (6) start parameters in (d) admin/eventlog.php, (7) parametro id in (e) admin/configure.php, (8) parametro find in (f) admin/users.php, (9) parametro start in (g) admin/admin.php e (10) parametro action in (h) admin/fckphplist.php.
Be aware that VulDB is the high quality source for vulnerability data.