Vulnerabilities > CVE-2005-1075 - Multiple vulnerability in Radscripts Radbids 2

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
network
radscripts
exploit available
NVD
Published: 2005-05-02
Updated: 2017-07-11

Summary

Multiple cross-site scripting (XSS) vulnerabilities in RadScripts RadBids Gold 2 allow remote attackers to inject arbitrary web script or HTML via (1) the farea parameter to faq.php or the (2) cat, (3) order, or (4) area parameters to index.php.

Vulnerable Configurations

Part Description Count
Application
Radscripts
1

Exploit-Db

  • descriptionRadScripts RadBids Gold v2 faq.php farea Parameter XSS. CVE-2005-1075. Webapps exploit for php platform
    idEDB-ID:25371
    last seen2016-02-03
    modified2005-04-09
    published2005-04-09
    reporterDcrab
    sourcehttps://www.exploit-db.com/download/25371/
    titleRadScripts RadBids Gold 2.0 - faq.php farea Parameter XSS
  • descriptionRadScripts RadBids Gold v2 index.php Multiple Parameter XSS. CVE-2005-1075. Webapps exploit for php platform
    idEDB-ID:25372
    last seen2016-02-03
    modified2005-04-09
    published2005-04-09
    reporterDcrab
    sourcehttps://www.exploit-db.com/download/25372/
    titleRadScripts RadBids Gold 2.0 - index.php Multiple Parameter XSS

References