{ "id": "CVE-2005-2884", "sourceIdentifier": "cve@mitre.org", "published": "2005-09-14T20:03:00.000", "lastModified": "2017-07-11T01:33:01.703", "vulnStatus": "Modified", "descriptions": [ { "lang": "en", "value": "Cross-site scripting (XSS) vulnerability in events.php in Land Down Under (LDU) 801 and earlier allows remote attackers to inject arbitrary web script or HTML via the Description field in an event." } ], "metrics": { "cvssMetricV2": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "2.0", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "accessVector": "NETWORK", "accessComplexity": "MEDIUM", "authentication": "NONE", "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "availabilityImpact": "NONE", "baseScore": 4.3 }, "baseSeverity": "MEDIUM", "exploitabilityScore": 8.6, "impactScore": 2.9, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "NVD-CWE-Other" } ] } ], "configurations": [ { "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:neocrome:land_down_under:601:*:*:*:*:*:*:*", "matchCriteriaId": "6DD6B4B4-B7A5-4D40-A592-F560A0D51C2A" }, { "vulnerable": true, "criteria": "cpe:2.3:a:neocrome:land_down_under:602:*:*:*:*:*:*:*", "matchCriteriaId": "A3AFAA03-3EE3-4903-8D6B-01D752C04716" }, { "vulnerable": true, "criteria": "cpe:2.3:a:neocrome:land_down_under:700.01:*:*:*:*:*:*:*", "matchCriteriaId": "6DBE0C14-CC8B-41FE-ABD9-C9C02813C7AD" }, { "vulnerable": true, "criteria": "cpe:2.3:a:neocrome:land_down_under:700.02:*:*:*:*:*:*:*", "matchCriteriaId": "CC6B6217-DD6C-41C5-AB0C-DE7B989C79D0" }, { "vulnerable": true, "criteria": "cpe:2.3:a:neocrome:land_down_under:700.03:*:*:*:*:*:*:*", "matchCriteriaId": "61969A06-96C3-4142-9065-6A8C2EFD557C" }, { "vulnerable": true, "criteria": "cpe:2.3:a:neocrome:land_down_under:700.04:*:*:*:*:*:*:*", "matchCriteriaId": "DA9B3FBC-54DB-4D21-B1AB-BC7721FD138E" }, { "vulnerable": true, "criteria": "cpe:2.3:a:neocrome:land_down_under:700.05:*:*:*:*:*:*:*", "matchCriteriaId": "07B7E614-0CB5-4AAF-B274-150DA5B85463" }, { "vulnerable": true, "criteria": "cpe:2.3:a:neocrome:land_down_under:701:*:*:*:*:*:*:*", "matchCriteriaId": "F1D278AA-9952-4117-B789-0E597D0E5599" }, { "vulnerable": true, "criteria": "cpe:2.3:a:neocrome:land_down_under:800:*:*:*:*:*:*:*", "matchCriteriaId": "0B013ADC-809F-4DFE-913B-FE3B8974404C" }, { "vulnerable": true, "criteria": "cpe:2.3:a:neocrome:land_down_under:801:*:*:*:*:*:*:*", "matchCriteriaId": "55A05DCF-C183-434B-BF4C-8F2228060EF4" } ] } ] } ], "references": [ { "url": "http://marc.info/?l=bugtraq&m=112604873103252&w=2", "source": "cve@mitre.org" }, { "url": "http://www.securityfocus.com/bid/14746", "source": "cve@mitre.org", "tags": [ "Exploit" ] }, { "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22195", "source": "cve@mitre.org" } ] }