Summary
The remote host runs Verity Ultraseek, an Enterprise Search Engine Software.
This version is vulnerable to cross-site scripting and remote script injection due to a lack of sanitization of user-supplied data.
Successful exploitation of this issue may allow an attacker to execute malicious script code on a vulnerable server.
Solution
Upgrade to version 5.3.3 or higher
Severity
Classification
-
CVE CVE-2005-0514 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N
Related Vulnerabilities
- Apache OFBiz Multiple Cross Site Scripting Vulnerabilities
- Apache mod_proxy_ajp Information Disclosure Vulnerability
- A4Desk Event Calendar 'eventid' Parameter SQL Injection Vulnerability
- Apache Roller 'q' Parameter Cross Site Scripting Vulnerability
- Apache Solr XML External Entity(XXE) Vulnerability-01 Jan-14