Vulnerabilities > CVE-2005-2901 - Unspecified vulnerability in CJ Desing Cjweb2Mail 3.0
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE network
cj-desing
Summary
Multiple Cross-site scripting (XSS) vulnerabilities in CjWeb2Mail 3.0 allow remote attackers to inject arbitrary web script or HTML via the (1) name, (2) message, or (3) ip parameter to thankyou.php or (4) emsg parameter to web2mail.php.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |