W.M.R Simpson Bookreview vulnerabilities
2 known vulnerabilities affecting w.m.r_simpson/bookreview.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2005-1782P4MEDIUMCVSS 4.3PoCv1.02005-05-26
CVE-2005-1782 [MEDIUM] CVE-2005-1782: Multiple cross-site scripting (XSS) vulnerabilities in BookReview beta 1.0 allow remote attackers to
Multiple cross-site scripting (XSS) vulnerabilities in BookReview beta 1.0 allow remote attackers to inject arbitrary web script or HTML via the node parameter to (1) add_review.htm, (2) suggest_review.htm, (3) suggest_category.htm, (4) add_booklist.htm, or (5) add_url.htm, the isbn parameter to (6) add_review.htm, (7) add_contents.htm, (8) add_classification
nvd
CVE-2005-1783P4MEDIUMCVSS 5.0vbeta_1.02005-05-31
CVE-2005-1783 [MEDIUM] CVE-2005-1783: BookReview beta 1.0 allows remote attackers to obtain the path of the web server via certain paramet
BookReview beta 1.0 allows remote attackers to obtain the path of the web server via certain parameters to search.htm, possibly due to a search[string] parameter with a missing value or an incorrect submit[type] value, which reveals the path in the resulting error message. NOTE: it is not clear whether BookReview is available to the public. If not, then it sh
nvd