Vulnerabilities > CVE-2005-2588 - Cross-Site Scripting vulnerability in Dvbbs 7.1/7.1Sp2
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Multiple cross-site scripting (XSS) vulnerabilities in DVBBS 7.1 SP2 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the page parameter to dispbbs.asp, (2) name parameter to dispuser.asp, or the (3) title, (4) view, or (5) act parameter to boardhelp.asp.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |
Exploit-Db
description Dvbbs 7.1/8.2 boardhelp.asp Multiple Parameter XSS. CVE-2005-2588. Webapps exploit for asp platform id EDB-ID:26109 last seen 2016-02-03 modified 2005-08-08 published 2005-08-08 reporter Lostmon source https://www.exploit-db.com/download/26109/ title Dvbbs 7.1/8.2 boardhelp.asp Multiple Parameter XSS description Dvbbs 7.1/8.2 dispuser.asp name Parameter XSS. CVE-2005-2588. Webapps exploit for asp platform id EDB-ID:26108 last seen 2016-02-03 modified 2005-08-08 published 2005-08-08 reporter Lostmon source https://www.exploit-db.com/download/26108/ title Dvbbs 7.1/8.2 dispuser.asp name Parameter XSS