Vulnerabilities > CVE-2005-1581 - Cross-Site Scripting vulnerability in Eric Fichot BUG Report 1.0

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

eric-fichot

NVD

Published: 2005-05-14

Updated: 2008-09-05

Summary

Cross-site scripting (XSS) vulnerability in Bug Report 1.0 allows remote attackers to inject arbitrary web script or HTML via various fields to bug_report.php, which are not filtered or quoted when processed by bug_list.php or admin/index.php.

Vulnerable Configurations

Part	Description	Count
Application	Eric_Fichot Eric Fichot BUG Report 1.0	1

References

http://securitytracker.com/id?1013957