Cross-site scripting (XSS) vulnerability in gui/errordocs/index.php in Virtual Hosting Control System (VHCS) 2.2.0 through 2.4.6.2 allows remote attackers to inject arbitrary web script or HTML via query strings that are included in an error message, as demonstrated using a parameter containing script.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2005-11-29T23:00:00
Updated: 2024-08-07T23:24:36.653Z
Reserved: 2005-11-29T00:00:00
Link: CVE-2005-3902
Vulnrichment
No data.
NVD
Status : Modified
Published: 2005-11-29T23:03:00.000
Modified: 2024-11-21T00:03:00.950
Link: CVE-2005-3902
Redhat
No data.