Vulnerabilities > CVE-2005-0883 - Cross-Site Scripting vulnerability in Digitalhive 2.0

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
network
digitalhive
exploit available
NVD
Published: 2005-03-23
Updated: 2017-07-11

Summary

Multiple cross-site scripting (XSS) vulnerabilities in base.php for DigitalHive 2.0 allow remote attackers to inject arbitrary web script or HTML via (1) the mt parameter to the membres.php page or (2) the -afs-1- query string to the msg.php page.

Vulnerable Configurations

Part Description Count
Application
Digitalhive
1

Exploit-Db

  • descriptionDigitalHive 2.0 membres.php mt Parameter XSS. CVE-2005-0883. Webapps exploit for php platform
    idEDB-ID:25264
    last seen2016-02-03
    modified2005-03-23
    published2005-03-23
    reporterbenji lemien
    sourcehttps://www.exploit-db.com/download/25264/
    titleDigitalHive 2.0 membres.php mt Parameter XSS
  • descriptionDigitalHive 2.0 msg.php XSS. CVE-2005-0883. Webapps exploit for php platform
    idEDB-ID:25263
    last seen2016-02-03
    modified2005-03-23
    published2005-03-23
    reporterbenji lemien
    sourcehttps://www.exploit-db.com/download/25263/
    titleDigitalHive 2.0 msg.php XSS

References