CVE-2005-0905

Maxthon 1.2.0 - Info Disclosure

Title source: llm

Description

Maxthon 1.2.0 allows remote malicious web sites to obtain potentially sensitive data from the search bar via the m2_search_text property.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Aviv Raff · htmlremotewindows

https://www.exploit-db.com/exploits/25274

View Code ZIP pw:eip

References (5)

[Mailing List] http://marc.info/?l=full-disclosure&m=111175236620942&w=2

[Patch] http://forum.maxthon.com/forum/index.php?showtopic=18207

[Vendor Advisory] http://www.raffon.net/advisories/maxthon/searchbarid.html

[Patch] http://www.securityfocus.com/bid/12898

[Patch, Vendor Advisory] http://secunia.com/advisories/14712

Scores

EPSS 0.0742

EPSS Percentile 91.8%

Details

Status published

Products (1)

maxthon/maxthon 1.2

Published May 02, 2005

Tracked Since Feb 18, 2026