MidnightBSD

Advisories for cofax

CVE-2005-4385 MEDIUM

Cross-site scripting (XSS) vulnerability in search.htm in Cofax 2.0 RC3 and earlier allows remote attackers to inject arbitrary web script or HTML via the searchstring parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
cofax cofax 1.9.9d
cofax cofax 2.0_rc2
cofax cofax 2.0_rc1
cofax cofax 1.9.9c
cofax cofax 2.0_rc3