Published: 02/05/2005 Updated: 11/07/2017

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 440

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Multiple cross-site scripting (XSS) vulnerabilities in RadScripts RadBids Gold 2 allow remote malicious users to inject arbitrary web script or HTML via (1) the farea parameter to faq.php or the (2) cat, (3) order, or (4) area parameters to index.php.

Vulnerable Product	Search on Vulmon	Subscribe to Product
radscripts radbids 2

source: wwwsecurityfocuscom/bid/13080/info RadBids Gold is reported prone to multiple vulnerabilities These issues include arbitrary file disclosure, cross-site scripting, and SQL injection The following specific vulnerabilities were identified: A remote attacker can disclose arbitrary files Information gathered through this issue ...

source: wwwsecurityfocuscom/bid/13080/info RadBids Gold is reported prone to multiple vulnerabilities These issues include arbitrary file disclosure, cross-site scripting, and SQL injection The following specific vulnerabilities were identified: A remote attacker can disclose arbitrary files Information gathered through this is ...

NVD-CWE-Other http://www.securityfocus.com/archive/1/395527 http://www.digitalparadox.org/advisories/rga.txt http://www.securityfocus.com/bid/13080 http://www.osvdb.org/15430 http://www.osvdb.org/15431 http://secunia.com/advisories/14906 https://exchange.xforce.ibmcloud.com/vulnerabilities/20038 https://nvd.nist.gov https://www.exploit-db.com/exploits/25371/

CVE-2005-1075

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect