Vulnerabilities > CVE-2005-3264 - Unspecified vulnerability in Zeroblog 1.1F/1.2A
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Cross-site scripting (XSS) vulnerability in thread.php for Zeroblog 1.1f and 1.2a allows remote attackers to inject arbitrary web script or HTML via the threadID parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
References
- http://irannetjob.com/content/view/141/28/
- http://irannetjob.com/content/view/141/28/
- http://marc.info/?l=bugtraq&m=112907042504220&w=2
- http://marc.info/?l=bugtraq&m=112907042504220&w=2
- http://secunia.com/advisories/17175/
- http://secunia.com/advisories/17175/
- http://www.securityfocus.com/bid/15078
- http://www.securityfocus.com/bid/15078