CVE-2005-1684 — MEDIUM (4.3)

Vulnerability Description

Cross-site scripting (XSS) vulnerability in default.asp for episodex guestbook allows remote attackers to inject arbitrary web script or HTML via the Name field and other fields.

CVSS Score

4.3

MEDIUM

AV:N/AC:M/Au:N/C:N/I:P/A:N

Confidentiality

NONE

Integrity

PARTIAL

Availability

NONE

Affected Products

Vendor	Product	Versions
Episodex	Episodex Guestbook	All versions

References

http://marc.info/?l=bugtraq&m=111661380018313&w=2
http://marc.info/?l=bugtraq&m=111661380018313&w=2

FAQ

What is CVE-2005-1684?

CVE-2005-1684 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Cross-site scripting (XSS) vulnerability in default.asp for episodex guestbook allows remote attackers to inject arbitrary web script or HTML via the Name field and other fields.

How severe is CVE-2005-1684?

CVE-2005-1684 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2005-1684?

Check the references section above for vendor advisories and patch information. Affected products include: Episodex Episodex Guestbook.