Published: 23/03/2005 Updated: 11/07/2017

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 440

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Multiple cross-site scripting (XSS) vulnerabilities in base.php for DigitalHive 2.0 allow remote malicious users to inject arbitrary web script or HTML via (1) the mt parameter to the membres.php page or (2) the -afs-1- query string to the msg.php page.

Vulnerable Product	Search on Vulmon	Subscribe to Product
digitalhive digitalhive 2.0

source: wwwsecurityfocuscom/bid/12883/info DigitalHive is reportedly affected by a cross-site scripting vulnerability This issue is due to a failure in the application to properly sanitize user-supplied input An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user This may fa ...

source: wwwsecurityfocuscom/bid/12883/info DigitalHive is reportedly affected by a cross-site scripting vulnerability This issue is due to a failure in the application to properly sanitize user-supplied input An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user This may faci ...

NVD-CWE-Other http://securitytracker.com/id?1013516 http://www.securityfocus.com/bid/12883 http://secunia.com/advisories/14702 https://exchange.xforce.ibmcloud.com/vulnerabilities/19803 https://nvd.nist.gov https://www.exploit-db.com/exploits/25264/

CVE-2005-0883

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect