CVE-2005-4493

Description

Cross-site scripting (XSS) vulnerability in SpearTek 6.0 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters.

Affected Software
References

Software	From	Fixed in
speartek / speartek	6.0	6.0.x

http://pridels0.blogspot.com/2005/12/speartek-xss-vuln.html
http://www.attrition.org/pipermail/vim/2006-August/001008.html
http://www.osvdb.org/22068
http://www.securityfocus.com/bid/16018
http://www.vupen.com/english/advisories/2005/3052

Severity: Medium

CVE: CVE-2005-4493
Published: Dec 22, 2005
Updated: Apr 13, 2023
Exploit:

Severity: Medium
Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

CVE-2005-4493

Description

Details

CVSS v2