CVE-2005-2416

N/A Unknown

Published: August 03, 2005 Modified: April 16, 2026

Description

Multiple cross-site scripting (XSS) vulnerabilities in Contrexx before 1.0.5 allow remote attackers to inject arbitrary web script or HTML via the (1) term parameter to the search module or (2) title in the blog aggregation module.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://marc.info/?l=bugtraq&m=112206702015439&w=2

Source: cve@mitre.org

http://secunia.com/advisories/16169

Source: cve@mitre.org

http://securitytracker.com/id?1014554

Source: cve@mitre.org

http://www.hardened-php.net/advisory_112005.59.html

Source: cve@mitre.org

Exploit Patch Vendor Advisory

http://www.osvdb.org/18168

Source: cve@mitre.org

http://www.osvdb.org/18169

Source: cve@mitre.org

http://www.securityfocus.com/bid/14352

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/21484

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/21487

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=112206702015439&w=2