Vulnerabilities > CVE-2005-2780 - HTML Injection vulnerability in Neocrome Land Down Under 800
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Cross-site scripting (XSS) vulnerability in Land Down Under (LDU) allows remote attackers to inject arbitrary web script or HTML via a signature.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Nessus
| NASL family | CGI abuses |
| NASL id | LDU_SQL_INJECTION.NASL |
| description | The remote version of Land Down Under is prone to various SQL injection and cross-site scripting attacks provided PHP |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 19678 |
| published | 2005-09-06 |
| reporter | Copyright (C) 2005-2018 Josh Zlatin-Amishav |
| source | https://www.tenable.com/plugins/nessus/19678 |
| title | Land Down Under <= 800 Multiple Vulnerabilities |