CVE-2005-3367 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2005-3367

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Cross-site scripting (XSS) vulnerability in journal.php in SparkleBlog 2.1 allows remote attackers to inject arbitrary web script or HTML via the name field.

Affected Software

Name	Vendor	Start Version	End Version
Sparkleblog	Sparkleblog	2.1 (including)	2.1 (including)

References

http://marc.info/?l=bugtraq\u0026m=113029164931570\u0026w=2
http://securityreason.com/securityalert/118
http://www.securityfocus.com/bid/15202
http://marc.info/?l=bugtraq\u0026m=113029164931570\u0026w=2
http://securityreason.com/securityalert/118
http://www.securityfocus.com/bid/15202