Vulnerabilities > CVE-2005-4375 - Cross-Site Scripting vulnerability in Box UK Amaxus CMS

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
network
box-uk
exploit available
NVD
Published: 2005-12-20
Updated: 2011-03-08

Summary

Cross-site scripting (XSS) vulnerability in Amaxus 3 and earlier allows remote attackers to inject arbitrary web script or HTML via the change parameter. NOTE: it is possible that this is resultant from CVE-2005-4376.

Vulnerable Configurations

Part Description Count
Application
Box_Uk
1

Exploit-Db

descriptionBox UK Amaxus CMS 3.0 Cross-Site Scripting Vulnerability. CVE-2005-4375 . Webapps exploit for php platform
idEDB-ID:26877
last seen2016-02-03
modified2005-12-19
published2005-12-19
reporterr0t3d3Vil
sourcehttps://www.exploit-db.com/download/26877/
titleBox UK Amaxus CMS 3.0 - Cross-Site Scripting Vulnerability

References