Back to search
CVE-2005-2674
Published: Aug 23, 2005
Modified: Aug 7, 2024
PUBLISHED
Description
Note: the vendor has disputed this issue. Multiple cross-site scripting (XSS) vulnerabilities in Land Down Under (LDU) 800 allow remote attackers to inject arbitrary web script or HTML via the (1) c or (2) m parameters to index.php or (3) w parameter to journal.php. NOTE: this issue has been disputed by the vendor, who says "None of the tricks written there are working, the variables are properly sanitized and no LDU version is affected.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20050820 Bugs Land Down Under v800
mailing-list
x_refsource_BUGTRAQ
1014747
vdb-entry
x_refsource_SECTRACK
http://www.neocrome.net
x_refsource_MISC
14619
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now