CVE-2005-0791
published 2005-03-14CVE-2005-0791: Cross-site scripting (XSS) vulnerability in adframe.php in phpAdsNew 2.0.4-pr1, when register_globals is enabled, allows remote attackers to inject arbitrary…
PriorityP419medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EXPLOIT
EPSS
4.03%
89.3th percentile
Cross-site scripting (XSS) vulnerability in adframe.php in phpAdsNew 2.0.4-pr1, when register_globals is enabled, allows remote attackers to inject arbitrary web script or HTML via the refresh parameter.
CVSS provenance
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
vendor_redhat5.0MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-rj6f-w67v-qg4r: Cross-site scripting (XSS) vulnerability in adframe
ghsa_unreviewed·2022-05-01
CVE-2005-0791 [MEDIUM] GHSA-rj6f-w67v-qg4r: Cross-site scripting (XSS) vulnerability in adframe
Cross-site scripting (XSS) vulnerability in adframe.php in phpAdsNew 2.0.4-pr1, when register_globals is enabled, allows remote attackers to inject arbitrary web script or HTML via the refresh parameter.
Red Hat
security flaw
vendor_redhat·2005-04-12·CVSS 5.0
CVE-2004-0791 [MEDIUM] security flaw
security flaw
Multiple TCP/IP and ICMP implementations allow remote attackers to cause a denial of service (network throughput reduction for TCP connections) via a blind throughput-reduction attack using spoofed Source Quench packets, aka the "ICMP Source Quench attack." NOTE: CVE-2004-0790, CVE-2004-0791, and CVE-2004-1060 have been SPLIT based on different attacks; CVE-2005-0065, CVE-2005-0066, CVE-2005-0067, and CVE-2005-0068 are related identifiers that are SPLIT based on the underlying vulnerability. While CVE normally SPLITs based on vulnerability, the attack-based identifiers exist due to the variety and number of affected implementations and solutions that address the attacks instead of the underlying vulnerabilities.
No detection rules found.
http://marc.info/?l=bugtraq&m=111083286926490&w=2http://secunia.com/advisories/14592http://securityreason.com/adv/%5BphpAdsNew%202.0.4-pr1%20Multiple%20vulnerabilities%20cXIb8O3.9%5D.aschttp://securitytracker.com/id?1013429http://www.osvdb.org/14787http://www.securityfocus.com/bid/12803https://exchange.xforce.ibmcloud.com/vulnerabilities/19692http://marc.info/?l=bugtraq&m=111083286926490&w=2http://secunia.com/advisories/14592http://securityreason.com/adv/%5BphpAdsNew%202.0.4-pr1%20Multiple%20vulnerabilities%20cXIb8O3.9%5D.aschttp://securitytracker.com/id?1013429http://www.osvdb.org/14787http://www.securityfocus.com/bid/12803https://exchange.xforce.ibmcloud.com/vulnerabilities/19692
2005-03-14
Published