ATutor Cross Site Scripting Vulnerability Network Vulnerability

Summary

The remote web server contains a PHP script which is vulnerable to a cross site scripting issue. Description : The remote host is running ATutor, a CMS written in PHP. The remote version of this software is prone to cross-site scripting attacks due to its failure to sanitize user-supplied input.

Solution

Unknown at this time.

References

http://archives.neohapsis.com/archives/bugtraq/2005-08/0261.html
http://archives.neohapsis.com/archives/fulldisclosure/2005-08/0600.html

Updated on 2015-03-25

Severity

Classification

CVE CVE-2005-2649
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N

Related Vulnerabilities

AjaXplorer 'doc_file' Parameter Local File Disclosure Vulnerability
3Com NBX VoIP NetSet Detection
Adobe BlazeDS XML and XML External Entity Injection Vulnerabilities
Apache Tomcat DOS Device Name XSS
@Mail 'MailType' Parameter Cross Site Scripting Vulnerability

Take action and discover your vulnerabilities