Vulnerabilities > CVE-2005-2776 - Cross-Site Scripting vulnerability in Looking Glass Looking Glass 20040427
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Multiple cross-site scripting (XSS) vulnerabilities in Looking Glass 20040427 allow remote attackers to inject arbitrary web script or HTML via the (1) version[fullname], (2) version[homepage], or (3) version[no] parameter to footer.php, or the (4) version[fullname], (5) version[no], (6) version[author], (7) version[email] parameter to header.php.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Nessus
| NASL family | CGI abuses |
| NASL id | LG_TARGET_CMD_EXEC.NASL |
| description | The remote host appears to be running Jurriaan de Neef |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 19523 |
| published | 2005-08-30 |
| reporter | This script is Copyright (C) 2005-2018 and is owned by Tenable, Inc. or an Affiliate thereof. |
| source | https://www.tenable.com/plugins/nessus/19523 |
| title | Looking Glass Multiple Vulnerabilities |