ID de Prueba:	1.3.6.1.4.1.25623.1.0.17612
Categoría:	Web application abuses
Título:	Interspire ArticleLive 2005 XSS Vulnerability
Resumen:	The remote web server is running ArticleLive, a set of CGIs designed to simplify; the management of a news site which is vulnerable to a cross site scripting issue.
Descripción:	Summary: The remote web server is running ArticleLive, a set of CGIs designed to simplify the management of a news site which is vulnerable to a cross site scripting issue. Vulnerability Impact: Due to improper filtering done by the script 'newcomment' remote attacker can cause the ArticleLive product to include arbitrary HTML and/or JavaScript, and therefore use the remote host to perform cross-site scripting attacks. Solution: Upgrade to the newest version of this software CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2005-0881 BugTraq ID: 12879 http://www.securityfocus.com/bid/12879 Bugtraq: 20050323 Interspire ArticleLive 2005 (php version) is vulnerable to XSS (Google Search) http://www.securityfocus.com/archive/1/394069 Bugtraq: 20050823 Re: Interspire ArticleLive 2005 (php version) is vulnerable to XSS (Google Search) http://marc.info/?l=bugtraq&m=112483966331737&w=2 http://secunia.com/advisories/14708 XForce ISS Database: articlelive-articleid-xss(19817) https://exchange.xforce.ibmcloud.com/vulnerabilities/19817
Copyright	Copyright (C) 2005 Noam Rathaus

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.