Arbitrary HTML and Web Script Injection in Openconf 1.04 and Earlier Versions

Arbitrary HTML and Web Script Injection in Openconf 1.04 and Earlier Versions

CVE-2005-0407 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in Openconf 1.04, and possibly other versions before 1.10, allows remote attackers to inject arbitrary HTML and web script via the paper title.

Learn more about our Web App Pen Testing.