Vulnerabilities > CVE-2005-2839 - Cross-Site Scripting vulnerability in Maxdev Md-Pro 1.0.72

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

maxdev

NVD

Published: 2005-09-07

Updated: 2008-09-05

Summary

Multiple cross-site scripting (XSS) vulnerabilities in MAXdev MD-Pro 1.0.72 allow remote attackers to inject arbitrary web script or HTML via (1) dl-search.php or (2) wl-search.php.

Vulnerable Configurations

Part	Description	Count
Application	Maxdev Maxdev MD PRO 1.0.72	1

References

http://securitytracker.com/id?1014847