CVE-2005-4060

N/A Unknown

Published: December 07, 2005 Modified: April 16, 2026

Description

Cross-site scripting (XSS) vulnerability in search.asp in rwAuction Pro 4.0 and 5.0 allows remote attackers to inject arbitrary web script or HTML via the searchtxt parameter.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://pridels-team.blogspot.com/2007/06/rwauction-pro-xss-vuln.html

Source: cve@mitre.org

http://pridels0.blogspot.com/2005/12/rwauction-pro-v40-xss-vuln.html

Source: cve@mitre.org

http://secunia.com/advisories/17905

Source: cve@mitre.org

http://www.attrition.org/pipermail/vim/2006-April/000713.html

Source: cve@mitre.org

http://www.osvdb.org/21475

Source: cve@mitre.org

http://www.securityfocus.com/bid/15740

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2005/2758

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/23466

Source: cve@mitre.org

http://pridels-team.blogspot.com/2007/06/rwauction-pro-xss-vuln.html