Exploitation Summary
EIP tracks 1 public exploit for CVE-2005-1492. PoCs published by Nathan House.
AI-analyzed exploit summary This exploit demonstrates a cross-site scripting (XSS) vulnerability in Gossamer Threads Links due to improper input sanitization. The PoC includes crafted URLs that inject arbitrary script code into the user.cgi endpoint.
Description
Cross-site scripting (XSS) vulnerability in user.cgi in Gossamer Threads Links SQL 2.x and 3.0 allows remote attackers to inject arbitrary web script or HTML via the url parameter.
Exploits (1)
This exploit demonstrates a cross-site scripting (XSS) vulnerability in Gossamer Threads Links due to improper input sanitization. The PoC includes crafted URLs that inject arbitrary script code into the user.cgi endpoint.