Summary
The remote web server contains a CGI which is vulnerable to multiple cross site scripting vulnerabilities.
Description :
The remote host is running the BookReview software.
The remote version of this software is vulnerable to multiple cross-site scripting vulnerabilities due to a lack of sanitization of user-supplied data.
Successful exploitation of this issue may allow an attacker to use the remote server to perform an attack against a third-party user.
Solution
None at this time
Severity
Classification
-
CVE CVE-2005-1782 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N
Related Vulnerabilities
- Apache Tomcat HTTP BIO Connector Information Disclosure Vulnerability
- Apache Struts2 showcase namespace XSS Vulnerability
- Apache ActiveMQ 'Cron Jobs' Cross Site Scripting Vulnerability
- Adobe ColdFusion Multiple Vulnerabilities-03 May-2014
- Allegro RomPager HTTP Referer Header Cross Site Scripting Vulnerability