CVE-2005-4000
published 2005-12-05CVE-2005-4000: Cross-site scripting (XSS) vulnerability in archive.asp in SiteBeater News System 4.00 and earlier allows remote attackers to inject arbitrary web script or…
PriorityP418medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EXPLOIT
EPSS
1.93%
77.5th percentile
Cross-site scripting (XSS) vulnerability in archive.asp in SiteBeater News System 4.00 and earlier allows remote attackers to inject arbitrary web script or HTML via the sKeywords parameter.
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
SiteBeater News 4.0 - 'Archive.asp' Cross-Site Scripting
exploitdb·2005-12-03
CVE-2005-4000 SiteBeater News 4.0 - 'Archive.asp' Cross-Site Scripting
SiteBeater News 4.0 - 'Archive.asp' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/15697/info
SiteBeater News is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input.
An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user in the context of the affected site. This may facilitate the theft of cookie-based authentication credentials as well as other attacks.
http://www.example.com/ArticleDisplay/Archive.asp?DOMAIN_Link=&sSort=SubmitDate&iSearchID=389&sKeywords=%3Cscript%3Ealert%28%27r0t%27%29%3C%2Fscript%3E
Exploit-DB
Oracle Application Server 9i - Webcache PartialPageErrorPage Cross-Site Scripting
exploitdb·2005-04-28
CVE-2005-1381 Oracle Application Server 9i - Webcache PartialPageErrorPage Cross-Site Scripting
Oracle Application Server 9i - Webcache PartialPageErrorPage Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/13422/info
A remote cross-site scripting vulnerability affects the Oracle Application Server 9i Webcache administration console. This issue is due to a failure of the application to properly sanitize user-supplied input prior to including it in dynamically generated Web content.
The issue affects the 'PartialPageErrorPage' parameter of the 'webcacheadmin' script.
http://example.com:4000/webcacheadmin?SCREEN_ID=CGA.Site.ApologyPages_Edit&ACTION=Submit&PartialPageErrorPage=/inservice.htmlalert(document.cookie)&site_id=2
Exploit-DB
Oracle Application Server 9i Webcache - Arbitrary File Corruption
exploitdb·2005-04-28
CVE-2005-1382 Oracle Application Server 9i Webcache - Arbitrary File Corruption
Oracle Application Server 9i Webcache - Arbitrary File Corruption
---
source: https://www.securityfocus.com/bid/13420/info
Oracle Application Server 9i Webcache is prone to an arbitrary file corruption vulnerability.
The issue exists becaue dangerous characters are not removed from a certain parameter value, allowing an attacker to construct a URI that contains an absolute path to any target file.
If this URI is followed by a user with sufficient privileges, garbage data is appended to the end of the specified file.
http://example.com:4000/webcacheadmin?SCREEN_ID=CGA.CacheDump&ACTION=Submit&index=1&cache_dump_file=/opt/ORACLE/ias/9.0.2/Apache/Apache/conf/httpd.conf
Exploit-DB
Oracle Application Server 9i - Webcache Cache_dump_file Cross-Site Scripting
exploitdb·2005-04-28
CVE-2005-1381 Oracle Application Server 9i - Webcache Cache_dump_file Cross-Site Scripting
Oracle Application Server 9i - Webcache Cache_dump_file Cross-Site Scripting
---
source : https://www.securityfocus.com/bid/13421/info
A remote cross-site scripting vulnerability affects the Oracle Application Server 9i Webcache administration console. This issue is due to a failure of the application to properly sanitize user-supplied input prior to including it in dynamically generated Web content.
The issue affects the 'cache_dump_file' parameter of the 'webcacheadmin' script.
http://example.com:4000/webcacheadmin?SCREEN_ID=CGA.CacheDump&ACTION=Submit&index=1&cache_dump_file=/tmp/create_or_replace_file.txtalert(document.cookie);
http://administrator:[email protected]:4000/webcacheadmin?SCREEN_ID=CGA.CacheDump&ACTION=Submit&index=1&cache_dump_file=/tmp/create_or_append_file.
Exploit-DB
Neslo Desktop Rover 3.0 - Malformed Packet Remote Denial of Service
exploitdb·2005-04-20
CVE-2005-1204 Neslo Desktop Rover 3.0 - Malformed Packet Remote Denial of Service
Neslo Desktop Rover 3.0 - Malformed Packet Remote Denial of Service
---
source: https://www.securityfocus.com/bid/13281/info
Neslo Desktop Rover is prone to a remote denial of service. Reports indicate that the software will crash when a malformed packet is processed on TCP port 61427.
A remote attacker may exploit this condition crash the software and effectively deny service for legitimate users.
20:23:48.778009 192.168.28.133.32771 > 192.168.28.129.61427: P [tcp sum ok]
1:13(12) ack 1 win 5840 (DF) (ttl 64, id 24051, len 64)
4500 0040 5df3 4000 4006 226e c0a8 1c85
c0a8 1c81 8003 eff3 90a8 d150 7cda 8afa
8018 16d0 daab 0000 0101 080a 0000 8cbe
0000 0000 6352 0100 0000 0000 0000 0000
No writeups or analysis indexed.
http://pridels0.blogspot.com/2005/12/sitebeater-news-system-xss-vuln.htmlhttp://secunia.com/advisories/17857http://www.osvdb.org/21436http://www.securityfocus.com/bid/15697http://www.vupen.com/english/advisories/2005/2717https://exchange.xforce.ibmcloud.com/vulnerabilities/23452http://pridels0.blogspot.com/2005/12/sitebeater-news-system-xss-vuln.htmlhttp://secunia.com/advisories/17857http://www.osvdb.org/21436http://www.securityfocus.com/bid/15697http://www.vupen.com/english/advisories/2005/2717https://exchange.xforce.ibmcloud.com/vulnerabilities/23452
2005-12-05
Published