Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 16/11/2005 Updated: 11/07/2017

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Multiple cross-site scripting (XSS) vulnerabilities in PHPKIT 1.6.1 R2 and previous versions allow remote malicious users to inject arbitrary web script or HTML via multiple vectors in (1) login/profile.php, (2) login/userinfo.php, (3) admin/admin.php, (4) imcenter.php, and the (5) referer statistics, the (6) HTML title element and (7) logo alt attributes in forum postings, and the (8) Homepage field in the Guestbook.

Vulnerable Product	Search on Vulmon	Subscribe to Product
phpkit phpkit

CWE-79 http://www.hardened-php.net/advisory_212005.80.html http://cert.uni-stuttgart.de/archive/bugtraq/2005/11/msg00110.html http://www.securityfocus.com/bid/15354 http://www.osvdb.org/20553 http://www.osvdb.org/20554 http://www.osvdb.org/20555 http://www.osvdb.org/20556 http://www.osvdb.org/20557 http://www.osvdb.org/20558 http://www.osvdb.org/20559 http://secunia.com/advisories/17479 http://securitytracker.com/id?1015167 http://www.vupen.com/english/advisories/2005/2344 https://exchange.xforce.ibmcloud.com/vulnerabilities/23009 https://exchange.xforce.ibmcloud.com/vulnerabilities/23008 https://exchange.xforce.ibmcloud.com/vulnerabilities/23007 https://exchange.xforce.ibmcloud.com/vulnerabilities/23006 https://exchange.xforce.ibmcloud.com/vulnerabilities/23004 https://exchange.xforce.ibmcloud.com/vulnerabilities/23003 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2005-3552

Vulnerability Summary

References

Vulmon Search

About

Products

Connect