CVE-2005-4060
Rainworx Rwauction Pro - XSS
Title source: ruleDescription
Cross-site scripting (XSS) vulnerability in search.asp in rwAuction Pro 4.0 and 5.0 allows remote attackers to inject arbitrary web script or HTML via the searchtxt parameter.
Exploits (1)
References (8)
Scores
EPSS
0.0076
EPSS Percentile
73.0%
Classification
CWE
CWE-79
Status
draft
Affected Products (2)
rainworx/rwauction_pro
rainworx/rwauction_pro
Timeline
Published
Dec 07, 2005
Tracked Since
Feb 18, 2026