PT-2019-6474 · Websieve · Websieve

Adam Majer

Published

2019-11-01

Updated

2019-11-04

CVE-2005-2350

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions websieve version 0.62

Description The issue allows remote attackers to inject arbitrary web script or HTML code in the web user interface due to a cross-site scripting (XSS) vulnerability.

Recommendations For websieve version 0.62, update to a version that includes a fix for this issue, as the current version allows for the injection of malicious code. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2005-2350

Affected Products

Websieve

PT-2019-6474 · Websieve · Websieve

CVE-2005-2350

Weakness Enumeration

Related Identifiers

Affected Products

References · 4