CVE-2005-1782

BookReview beta 1.0 - Cross-Site Scripting via Multiple Parameters

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 9 public exploits for CVE-2005-1782. PoCs published by Lostmon.

AI-analyzed exploit summary This exploit demonstrates a cross-site scripting (XSS) vulnerability in BookReview by injecting arbitrary script code via the 'node' parameter in the URL. The lack of input sanitization allows execution of JavaScript in the context of a victim's browser.

Description

Multiple cross-site scripting (XSS) vulnerabilities in BookReview beta 1.0 allow remote attackers to inject arbitrary web script or HTML via the node parameter to (1) add_review.htm, (2) suggest_review.htm, (3) suggest_category.htm, (4) add_booklist.htm, or (5) add_url.htm, the isbn parameter to (6) add_review.htm, (7) add_contents.htm, (8) add_classification.htm, the (9) chapters parameter to the add_contents page in index.php (aka add_contents.htm), (10) the user parameter to contact.htm, or (11) the submit[string] parameter to search.htm. NOTE: it is not clear whether BookReview is available to the public. If not, then it should not be included in CVE.

Exploits (9)

exploitdb WORKING POC VERIFIED
by Lostmon · textwebappsphp
https://www.exploit-db.com/exploits/25735

This exploit demonstrates a cross-site scripting (XSS) vulnerability in BookReview by injecting arbitrary script code via the 'node' parameter in the URL. The lack of input sanitization allows execution of JavaScript in the context of a victim's browser.

Classification
Working Poc 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: BookReview (version not specified)
No auth needed
Prerequisites: Victim must visit a crafted URL
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by Lostmon · textwebappsphp
https://www.exploit-db.com/exploits/25729

The provided text describes a cross-site scripting (XSS) vulnerability in BookReview, where user-supplied input is not properly sanitized. The example demonstrates an XSS payload injected via the 'node' parameter in a URL.

Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: BookReview (version not specified)
No auth needed
Prerequisites: Access to a vulnerable BookReview instance · Ability to craft a malicious URL
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Lostmon · textwebappsphp
https://www.exploit-db.com/exploits/25733

This exploit demonstrates a cross-site scripting (XSS) vulnerability in BookReview by injecting arbitrary script code via unsanitized user input in the search functionality. The PoC URL triggers an alert with the user's cookies, proving the vulnerability.

Classification
Working Poc 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: BookReview (version not specified)
No auth needed
Prerequisites: Victim must visit the crafted URL
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by Lostmon · textwebappsphp
https://www.exploit-db.com/exploits/25730

The provided text describes a cross-site scripting (XSS) vulnerability in BookReview, where user-supplied input is not properly sanitized. The example demonstrates how an attacker could inject arbitrary script code via the 'user' parameter in the URL.

Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: BookReview (version not specified)
No auth needed
Prerequisites: Access to the vulnerable application URL
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by Lostmon · textwebappsphp
https://www.exploit-db.com/exploits/25732

The provided text describes a cross-site scripting (XSS) vulnerability in BookReview, where user-supplied input is not properly sanitized. The example demonstrates how an attacker could inject arbitrary script code via a URL parameter.

Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: BookReview (version not specified)
No auth needed
Prerequisites: Access to a vulnerable BookReview instance · Ability to craft a malicious URL
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Lostmon · textwebappsphp
https://www.exploit-db.com/exploits/25727

This exploit demonstrates multiple XSS vulnerabilities in BookReview by injecting arbitrary script code via unsanitized input parameters such as 'isbn' and 'node'. The PoC URLs trigger JavaScript alerts to steal cookie-based authentication credentials.

Classification
Working Poc 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: BookReview (version not specified)
No auth needed
Prerequisites: Access to the vulnerable web application
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by Lostmon · textwebappsphp
https://www.exploit-db.com/exploits/25728

The provided text describes a cross-site scripting (XSS) vulnerability in BookReview, where user-supplied input is not properly sanitized. The example URL demonstrates an XSS payload that executes arbitrary JavaScript in the context of the victim's browser.

Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: BookReview (version not specified)
No auth needed
Prerequisites: Victim interaction required to click a malicious link
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Lostmon · textwebappsphp
https://www.exploit-db.com/exploits/25734

This exploit demonstrates a cross-site scripting (XSS) vulnerability in BookReview by injecting arbitrary JavaScript code via the 'isbn' parameter. The PoC uses a simple alert to display the document cookie, proving the lack of input sanitization.

Classification
Working Poc 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: BookReview (version not specified)
No auth needed
Prerequisites: Access to the vulnerable BookReview application
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by Lostmon · textwebappsphp
https://www.exploit-db.com/exploits/25731

The provided text describes a cross-site scripting (XSS) vulnerability in BookReview, where user-supplied input is not properly sanitized. The example URL demonstrates an XSS payload that executes arbitrary JavaScript in the context of a victim's browser.

Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: BookReview (version not specified)
No auth needed
Prerequisites: Victim interaction required to trigger the XSS payload
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (12)

Core 12
Core References
Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/13783
Vendor Advisory vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1014058
Vendor Advisory vdb-entry x_refsource_osvdb
http://www.osvdb.org/16873
Vendor Advisory vdb-entry x_refsource_osvdb
http://www.osvdb.org/16876
Vendor Advisory vdb-entry x_refsource_osvdb
http://www.osvdb.org/16874
Vendor Advisory vdb-entry x_refsource_osvdb
http://www.osvdb.org/16878
Vendor Advisory vdb-entry x_refsource_osvdb
http://www.osvdb.org/16879
Vendor Advisory vdb-entry x_refsource_osvdb
http://www.osvdb.org/16871
Vendor Advisory vdb-entry x_refsource_osvdb
http://www.osvdb.org/16872
Vendor Advisory vdb-entry x_refsource_osvdb
http://www.osvdb.org/16875
Vendor Advisory vdb-entry x_refsource_osvdb
http://www.osvdb.org/16877

Scores

EPSS 0.0513
EPSS Percentile 91.3%

Details

Status published
Products (1)
w.m.r._simpson/bookreview 1.0
Published May 26, 2005
Tracked Since Feb 18, 2026