CVE-2005-4047

Name of the Vulnerable Software and Affected Versions IISWorks ASPKnowledgeBase version 2.0

Description The issue is related to a cross-site scripting (XSS) vulnerability. This vulnerability allows remote attackers to inject arbitrary web script or HTML via the a parameter in the kb.asp file.

Recommendations For IISWorks ASPKnowledgeBase version 2.0, consider restricting access to the kb.asp file until a patch is available. As a temporary workaround, avoid using the a parameter in the kb.asp file to minimize the risk of exploitation.