mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-29 05:56:59 +00:00
102 lines
3.5 KiB
JSON
102 lines
3.5 KiB
JSON
{
|
|
"CVE_data_meta": {
|
|
"ASSIGNER": "cve@mitre.org",
|
|
"ID": "CVE-2005-4502",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "n/a",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name": "n/a"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format": "MITRE",
|
|
"data_type": "CVE",
|
|
"data_version": "4.0",
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "Cross-site scripting (XSS) vulnerability in httprint v202, and possibly other versions before v301, allows remote attackers to inject arbitrary web script or HTML via the Server field in an HTTP response, which is not sanitized before being displayed to the user."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "n/a"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"name": "ADV-2005-3070",
|
|
"refsource": "VUPEN",
|
|
"url": "http://www.vupen.com/english/advisories/2005/3070"
|
|
},
|
|
{
|
|
"name": "1015403",
|
|
"refsource": "SECTRACK",
|
|
"url": "http://securitytracker.com/id?1015403"
|
|
},
|
|
{
|
|
"name": "httprint-response-header-script-injection(23885)",
|
|
"refsource": "XF",
|
|
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/23885"
|
|
},
|
|
{
|
|
"name": "18208",
|
|
"refsource": "SECUNIA",
|
|
"url": "http://secunia.com/advisories/18208"
|
|
},
|
|
{
|
|
"name": "http://www.cybsec.com/vuln/CYBSEC_Security_Advisory_httprint_Multiple_Vulnerabilities.pdf",
|
|
"refsource": "MISC",
|
|
"url": "http://www.cybsec.com/vuln/CYBSEC_Security_Advisory_httprint_Multiple_Vulnerabilities.pdf"
|
|
},
|
|
{
|
|
"name": "http://net-square.com/httprint/#history",
|
|
"refsource": "CONFIRM",
|
|
"url": "http://net-square.com/httprint/#history"
|
|
},
|
|
{
|
|
"name": "16031",
|
|
"refsource": "BID",
|
|
"url": "http://www.securityfocus.com/bid/16031"
|
|
},
|
|
{
|
|
"name": "20051222 CYBSEC - Security Advisory: httprint Multiple Vulnerabilities",
|
|
"refsource": "BUGTRAQ",
|
|
"url": "http://www.securityfocus.com/archive/1/420101/100/0/threaded"
|
|
},
|
|
{
|
|
"name": "20051222 CYBSEC - Security Advisory: httprint Multiple Vulnerabilities",
|
|
"refsource": "FULLDISC",
|
|
"url": "http://lists.grok.org.uk/pipermail/full-disclosure/2005-December/040532.html"
|
|
}
|
|
]
|
|
}
|
|
} |