Exploitation Summary
EIP tracks 1 public exploit for CVE-2005-1800. PoCs published by Nah.
AI-analyzed exploit summary The provided text describes a cross-site scripting (XSS) vulnerability in JAWS versions 0.4 and 0.5, where the 'Glossary' module fails to sanitize user input. The example URL demonstrates how an attacker could inject malicious JavaScript code via the 'term' parameter.
Description
Cross-site scripting (XSS) vulnerability in Jaws Glossary gadget 0.4 to 0.5.1 allows remote attackers to inject arbitrary web script or HTML via the term parameter in a view or ViewTerm action to index.php.
Exploits (1)
The provided text describes a cross-site scripting (XSS) vulnerability in JAWS versions 0.4 and 0.5, where the 'Glossary' module fails to sanitize user input. The example URL demonstrates how an attacker could inject malicious JavaScript code via the 'term' parameter.