CVE-2005-4747 | Vulnerability Database | Aqua Security

Cross-site scripting (XSS) vulnerability in WebHost Automation Ltd Helm before 3.2.6 allows remote attackers to inject arbitrary web script or HTML via unknown vectors involving the default page.

Affected Software

Name	Vendor	Start Version	End Version
Helm_web_hosting_control_panel	Webhost_automation	3.2.0 (including)	3.2.0 (including)
Helm_web_hosting_control_panel	Webhost_automation	3.2.1 (including)	3.2.1 (including)
Helm_web_hosting_control_panel	Webhost_automation	3.2.2 (including)	3.2.2 (including)
Helm_web_hosting_control_panel	Webhost_automation	3.2.3 (including)	3.2.3 (including)
Helm_web_hosting_control_panel	Webhost_automation	3.2.4 (including)	3.2.4 (including)
Helm_web_hosting_control_panel	Webhost_automation	3.2.5 (including)	3.2.5 (including)

References

http://attrition.org/pipermail/vim/2006-March/000653.html
http://attrition.org/pipermail/vim/2006-March/000654.html
http://www.webhostautomation.com/webhost-301

NVD	https://nvd.nist.gov/vuln/detail/CVE-2005-4747
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html