PT-2005-3796 · Sawmill · Sawmill
Mark Terry
·
Publicado
2005-09-16
·
Atualizado
2017-07-11
·
CVE-2005-2950
CVSS v2.0
4.3
Média
| Vetor | AV:N/AC:M/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Sawmill versions 7.0.0 through 7.1.13
Description
A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via the query string in an HTTP GET request. This could potentially lead to unauthorized actions on the affected system.
Recommendations
For Sawmill versions 7.0.0 through 7.1.13, update to a version later than 7.1.13 to resolve the issue.
Exploit
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Sawmill