PT-2005-4485 · Idetix Software Systems · Revize Cms
Lostmon
·
Published
2005-11-21
·
Updated
2008-09-05
·
CVE-2005-3730
CVSS v2.0
4.3
Medium
| Vector | AV:N/AC:M/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Idetix Software Systems Revize CMS (affected versions not specified)
Description
The issue concerns multiple cross-site scripting (XSS) vulnerabilities in the HTTPTranslatorServlet of Idetix Software Systems Revize CMS. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML via the
resourcetype, objectmap, and redirect parameters. The exploitation might involve the setWebSpace.jsp file.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Revize Cms