CVE-2005-4672 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2005-4672

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Cross-site scripting (XSS) vulnerability in image-editor-52/index.php in CityPost Simple Image-Editor 0.52 allows remote attackers to inject arbitrary web script or HTML via the (1) m1, (2) m2, (3) m3, (4) imgsrc, and (5) m4 parameter.

Affected Software

Name	Vendor	Start Version	End Version
Simple_image_editor	Citypost	0.52 (including)	0.52 (including)

References

http://secunia.com/advisories/15010
http://securitytracker.com/id?1013751
http://www.securityfocus.com/bid/13260
https://exchange.xforce.ibmcloud.com/vulnerabilities/20161