Vulnerabilities > CVE-2005-3977 - Cross-Site Scripting vulnerability in Qualityebiz Qualityppc 1553

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

qualityebiz

NVD

Published: 2005-12-03

Updated: 2011-03-08

Summary

Cross-site scripting (XSS) vulnerability in QualityEBiz Quality PPC 1553 allows remote attackers to inject web script or HTML via the REQ parameter to the search module.

Vulnerable Configurations

Part	Description	Count
Application	Qualityebiz Qualityebiz Qualityppc 1553	1

References

http://pridels0.blogspot.com/2005/12/qualityppc-xss-vuln.html
http://secunia.com/advisories/17850
http://www.osvdb.org/21387
http://www.securityfocus.com/bid/15685
http://www.vupen.com/english/advisories/2005/2699