Vulnerabilities > CVE-2005-3972 - Cross-Site Scripting vulnerability in Extreme Corporate Extremesearch.PHP
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Cross-site scripting (XSS) vulnerability in extremesearch.php in Extreme Search Corporate Edition 6.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the search parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | Extreme Corporate 6.0 Extremesearch.PHP Cross-Site Scripting Vulnerability. CVE-2005-3972. Webapps exploit for php platform |
id | EDB-ID:26692 |
last seen | 2016-02-03 |
modified | 2005-12-01 |
published | 2005-12-01 |
reporter | r0t |
source | https://www.exploit-db.com/download/26692/ |
title | Extreme Corporate 6.0 Extremesearch.PHP Cross-Site Scripting Vulnerability |