CVE-2005-4516

Published: Dec 28, 2005Modified: Apr 16, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

Multiple cross-site scripting (XSS) vulnerabilities in PHP-Fusion 6.00.200 through 6.00.300 allow remote attackers to inject arbitrary web script or HTML via (1) the sortby parameter in members.php and (2) IMG tags.

Affected (6)

Products: Php Fusion: Php Fusion

1 product

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Php Fusion Php Fusion	Version 6.00.200
Php Fusion Php Fusion	Version 6.00.204
Php Fusion Php Fusion	Version 6.00.205
Php Fusion Php Fusion	Version 6.00.206
Php Fusion Php Fusion	Version 6.00.207
Php Fusion Php Fusion	Version 6.00.300

References (14)

http://secunia.com/advisories/18190/

Source: cve@mitre.org

PatchVendor Advisory

http://securityreason.com/securityalert/272

Source: cve@mitre.org

http://www.osvdb.org/22048

Source: cve@mitre.org

http://www.osvdb.org/22050

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/420109/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/15931

Source: cve@mitre.org

Exploit

http://www.vupen.com/english/advisories/2005/3063

Source: cve@mitre.org

http://secunia.com/advisories/18190/

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://securityreason.com/securityalert/272

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.osvdb.org/22048

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.osvdb.org/22050

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/420109/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/15931

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

http://www.vupen.com/english/advisories/2005/3063

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.