CVE-2005-1800

Cross-site scripting (XSS) vulnerability in Jaws Glossary gadget 0.4 to 0.5.1 allows remote attackers to inject arbitrary web script or HTML via the term parameter in a view or ViewTerm action to index.php.

Published: May 28, 2005
Updated: Apr 13, 2023
CVE: CVE-2005-1800
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
clam_anti-virus / clamav	0.84_rc1	0.84_rc1.x
clam_anti-virus / clamav	0.82	0.82.x
clam_anti-virus / clamav	0.81	0.81.x
clam_anti-virus / clamav	0.83	0.83.x
clam_anti-virus / clamav	0.84_rc2	0.84_rc2.x

http://lists.grok.org.uk/pipermail/full-disclosure/2005-May/034354.html
http://www.securityfocus.com/bid/13796

Vulnerability Database

289,784

CVE-2005-1800