Vulnerability Database
296,843
Total vulnerabilities in the database
CVE-2005-4277
Cross-site scripting (XSS) vulnerability in index.php in toendaCMS before 0.7 Beta allows remote attackers to inject arbitrary web script or HTML via the id parameter.
| Software | From | Fixed in |
|---|---|---|
| toenda_software_development / toendacms | - | 0.6.x |
| toenda_software_development / toendacms | 0.6_beta_3 | 0.6_beta_3.x |
| toenda_software_development / toendacms | 0.6_pre-beta | 0.6_pre-beta.x |
| toenda_software_development / toendacms | 0.6_beta_1 | 0.6_beta_1.x |
| toenda_software_development / toendacms | 0.6_beta_2 | 0.6_beta_2.x |
- http://secunia.com/advisories/18058
- http://securitytracker.com/id?1015354
- http://www.osvdb.org/21767
- http://www.securityfocus.com/archive/1/435412/100/0/threaded
- http://www.securityfocus.com/bid/18178
- http://www.toenda.com/files/toendaCMS_0.7_Beta.zip
- http://www.vupen.com/english/advisories/2005/2926
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime