Vulnerabilities > CVE-2005-1403 - Cross-Site Scripting vulnerability in Just William's Amazon Webstore Closeup.PHP Image Parameter

047910
CVSS 6.8 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
just-williams
exploit available

Summary

Multiple cross-site scripting (XSS) vulnerabilities in JustWilliam's Amazon Webstore 04050100 allow remote attackers to inject arbitrary web script or HTML via the (1) image parameter to closeup.php, the (2) currentIsExpanded or (3) searchFor parameters to index.php, (4) the currentNumber parameter to software_CAD_Technical_60002_uk.htm, or (5) a cookie.

Vulnerable Configurations

Part Description Count
Application
Just_Williams
1

Exploit-Db

  • descriptionJust William's Amazon Webstore Closeup.PHP Image Parameter Cross-Site Scripting Vulnerability. CVE-2005-1403. Webapps exploit for php platform
    idEDB-ID:25560
    last seen2016-02-03
    modified2005-04-28
    published2005-04-28
    reporterLostmon
    sourcehttps://www.exploit-db.com/download/25560/
    titleJust William's Amazon Webstore Closeup.PHP Image Parameter Cross-Site Scripting Vulnerability
  • descriptionJust William's Amazon Webstore SearchFor Parameter Cross-Site Scripting Vulnerability. CVE-2005-1403. Webapps exploit for php platform
    idEDB-ID:25565
    last seen2016-02-03
    modified2005-04-28
    published2005-04-28
    reporterLostmon
    sourcehttps://www.exploit-db.com/download/25565/
    titleJust William's Amazon Webstore SearchFor Parameter Cross-Site Scripting Vulnerability
  • descriptionJust William's Amazon Webstore CurrentNumber Parameter Cross-Site Scripting Vulnerability. CVE-2005-1403. Webapps exploit for php platform
    idEDB-ID:25566
    last seen2016-02-03
    modified2005-04-28
    published2005-04-28
    reporterLostmon
    sourcehttps://www.exploit-db.com/download/25566/
    titleJust William's Amazon Webstore CurrentNumber Parameter Cross-Site Scripting Vulnerability