Summary
The remote host is running DotNetNuke, a portal written in ASP.
The remote software, according to its version number, contains several input validation flaws leading to the execution of attacker supplied HTML and script code.
Solution
Upgrade to version 3.0.12 or greater
Severity
Classification
-
CVE CVE-2005-0040 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N
Related Vulnerabilities
- Andromeda Streaming MP3 Server Cross Site Scripting Vulnerability
- 1024 CMS 1.1.0 Beta 'force_download.php' Local File Include Vulnerability
- AjaXplorer Remote Command Injection and Local File Disclosure Vulnerabilities
- Apache Struts Showcase Multiple Persistence Cross-Site Scripting Vulnerabilities
- Apache Archiva Home Page Cross-Site Scripting vulnerability