Vulnerabilities > CVE-2005-4364 - Cross-Site Scripting vulnerability in HOT Banana web Content Management Suite 5.3

047910
CVSS 5.8 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
NONE
network
hot-banana
exploit available

Summary

Cross-site scripting (XSS) vulnerability in index.cfm in Hot Banana Web Content Management Suite 5.3 allows remote attackers to inject arbitrary web script or HTML via the keywords parameter.

Vulnerable Configurations

Part Description Count
Application
Hot_Banana
1

Exploit-Db

descriptionHot Banana Web Content Management Suite 5.3 Cross-Site Scripting Vulnerability. CVE-2005-4364 . Webapps exploit for cfm platform
idEDB-ID:26882
last seen2016-02-03
modified2005-12-19
published2005-12-19
reporterr0t3d3Vil
sourcehttps://www.exploit-db.com/download/26882/
titleHot Banana Web Content Management Suite 5.3 - Cross-Site Scripting Vulnerability