Multiple cross-site scripting (XSS) vulnerabilities in NetAuctionHelp 3.0 and earlier allow remote attackers to inject arbitrary HTML and web script via the (1) L, (2) sort, (3) category, (4) categoryname parameters to search.asp.
                
            References
                    Configurations
                    History
                    21 Nov 2024, 00:03
| Type | Values Removed | Values Added | 
|---|---|---|
| References | () http://pridels0.blogspot.com/2005/12/netauctionhelp-v30-xss-vuln.html - | |
| References | () http://secunia.com/advisories/17902 - | |
| References | () http://www.osvdb.org/21474 - | |
| References | () http://www.securityfocus.com/bid/15737 - | |
| References | () http://www.vupen.com/english/advisories/2005/2761 - | 
Information
                Published : 2005-12-07 11:03
Updated : 2025-04-03 01:03
NVD link : CVE-2005-4063
Mitre link : CVE-2005-4063
CVE.ORG link : CVE-2005-4063
JSON object : View
Products Affected
                netauctionhelp
- netauctionhelp
CWE
                