CVE-2005-0251

Guillaumegardey Biborb - XSS

Title source: rule

Description

Cross-site scripting (XSS) vulnerability in bibindex.php for BibORB 1.3.2, and possibly earlier versions, allows remote attackers to inject arbitrary HTML and web script via the search parameter.

Exploits (2)

exploitdb WRITEUP VERIFIED

by Patrick Hof · textwebappsphp

https://www.exploit-db.com/exploits/25118

View Code ZIP pw:eip

exploitdb WRITEUP VERIFIED

by Patrick Hof · textwebappsphp

https://www.exploit-db.com/exploits/25119

View Code ZIP pw:eip

References (3)

[Exploit, Mailing List, Third Party Advisory] http://marc.info/?l=bugtraq&m=110868948719773&w=2

[Exploit, Mailing List, Third Party Advisory] http://marc.info/?l=full-disclosure&m=110864983905770&w=2

[Patch, Third Party Advisory, VDB Entry, Vendor Advisory] http://www.securityfocus.com/bid/12583

Scores

EPSS 0.0313

EPSS Percentile 86.7%

Classification

CWE

CWE-79

Status draft

Affected Products (2)

guillaumegardey/biborb

Timeline

Published May 02, 2005

Tracked Since Feb 18, 2026