{ "CVE_data_meta" : { "ASSIGNER" : "cve@mitre.org", "ID" : "CVE-2005-3552", "STATE" : "PUBLIC" }, "affects" : { "vendor" : { "vendor_data" : [ { "product" : { "product_data" : [ { "product_name" : "n/a", "version" : { "version_data" : [ { "version_value" : "n/a" } ] } } ] }, "vendor_name" : "n/a" } ] } }, "data_format" : "MITRE", "data_type" : "CVE", "data_version" : "4.0", "description" : { "description_data" : [ { "lang" : "eng", "value" : "Multiple cross-site scripting (XSS) vulnerabilities in PHPKIT 1.6.1 R2 and earlier allow remote attackers to inject arbitrary web script or HTML via multiple vectors in (1) login/profile.php, (2) login/userinfo.php, (3) admin/admin.php, (4) imcenter.php, and the (5) referer statistics, the (6) HTML title element and (7) logo alt attributes in forum postings, and the (8) Homepage field in the Guestbook." } ] }, "problemtype" : { "problemtype_data" : [ { "description" : [ { "lang" : "eng", "value" : "n/a" } ] } ] }, "references" : { "reference_data" : [ { "name" : "20051105 Advisory 21/2005: Multiple vulnerabilities in PHPKIT", "refsource" : "BUGTRAQ", "url" : "http://cert.uni-stuttgart.de/archive/bugtraq/2005/11/msg00110.html" }, { "name" : "http://www.hardened-php.net/advisory_212005.80.html", "refsource" : "MISC", "url" : "http://www.hardened-php.net/advisory_212005.80.html" }, { "name" : "15354", "refsource" : "BID", "url" : "http://www.securityfocus.com/bid/15354" }, { "name" : "ADV-2005-2344", "refsource" : "VUPEN", "url" : "http://www.vupen.com/english/advisories/2005/2344" }, { "name" : "20553", "refsource" : "OSVDB", "url" : "http://www.osvdb.org/20553" }, { "name" : "20554", "refsource" : "OSVDB", "url" : "http://www.osvdb.org/20554" }, { "name" : "20555", "refsource" : "OSVDB", "url" : "http://www.osvdb.org/20555" }, { "name" : "20556", "refsource" : "OSVDB", "url" : "http://www.osvdb.org/20556" }, { "name" : "20557", "refsource" : "OSVDB", "url" : "http://www.osvdb.org/20557" }, { "name" : "20558", "refsource" : "OSVDB", "url" : "http://www.osvdb.org/20558" }, { "name" : "20559", "refsource" : "OSVDB", "url" : "http://www.osvdb.org/20559" }, { "name" : "1015167", "refsource" : "SECTRACK", "url" : "http://securitytracker.com/id?1015167" }, { "name" : "17479", "refsource" : "SECUNIA", "url" : "http://secunia.com/advisories/17479" }, { "name" : "phpkit-admin-xss(23004)", "refsource" : "XF", "url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/23004" }, { "name" : "phpkit-guestbook-xss(23009)", "refsource" : "XF", "url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/23009" }, { "name" : "phpkit-html-tags-xss(23007)", "refsource" : "XF", "url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/23007" }, { "name" : "phpkit-imcenter-xss(23008)", "refsource" : "XF", "url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/23008" }, { "name" : "phpkit-profile-userinfo-xss(23003)", "refsource" : "XF", "url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/23003" }, { "name" : "phpkit-referer-xss(23006)", "refsource" : "XF", "url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/23006" } ] } }