CVE-2005-4475

Description

Cross-site scripting (XSS) vulnerability in OpenCms 6.0.3 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters.

Affected products

• Alkacon / OpenCms6.0.2 – 6.0.2
• Alkacon / OpenCms6.0.3 – 6.0.3

References

• MISChttp://pridels0.blogspot.com/2005/12/opencms-xss-vuln.html
• MISChttp://www.securityfocus.com/bid/16003
• MISChttp://www.osvdb.org/21877