Description
Cross-site scripting (XSS) vulnerability in Jaws Glossary gadget 0.4 to 0.5.1 allows remote attackers to inject arbitrary web script or HTML via the term parameter in a view or ViewTerm action to index.php.
Exploits (1)
References (2)
Core 2
Core References
Patch, Vendor Advisory mailing-list
x_refsource_fulldisc
http://lists.grok.org.uk/pipermail/full-disclosure/2005-May/034354.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/13796
Scores
EPSS
0.0037
EPSS Percentile
59.2%
Details
Status
published
Products (5)
clam_anti-virus/clamav
0.81
clam_anti-virus/clamav
0.82
clam_anti-virus/clamav
0.83
clam_anti-virus/clamav
0.84_rc1
clam_anti-virus/clamav
0.84_rc2
Published
May 28, 2005
Tracked Since
Feb 18, 2026