CVE-2005-1030

N/A Unknown

Published: May 02, 2005 Modified: April 16, 2026

Description

Multiple cross-site scripting (XSS) vulnerabilities in Active Auction House allow remote attackers to inject arbitrary web script or HTML via the (1) ReturnURL, (2) password, (3) username parameter, (4) ReturnURL parameter to account.asp, (5) Table, (6) Title parameter to sendpassword.asp, or (7) itemid to watchthisitem.asp.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://digitalparadox.org/advisories/aass.txt

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=111280834000432&w=2

Source: cve@mitre.org

http://secunia.com/advisories/14839

Source: cve@mitre.org

Exploit Vendor Advisory

http://www.osvdb.org/15284

Source: cve@mitre.org

http://www.osvdb.org/15285

Source: cve@mitre.org

http://www.osvdb.org/15286

Source: cve@mitre.org

http://www.osvdb.org/15287

Source: cve@mitre.org

http://www.securityfocus.com/bid/13036

Source: cve@mitre.org

Exploit

http://www.securityfocus.com/bid/13038

Source: cve@mitre.org

Exploit

http://www.securityfocus.com/bid/13039

Source: cve@mitre.org

Exploit

http://www.securitytracker.com/alerts/2005/Apr/1013649.html

Source: cve@mitre.org

Exploit

https://exchange.xforce.ibmcloud.com/vulnerabilities/19975

Source: cve@mitre.org

http://digitalparadox.org/advisories/aass.txt

Source: af854a3a-2127-422b-91ae-364da2661108

http://marc.info/?l=bugtraq&m=111280834000432&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/14839

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit Vendor Advisory

http://www.osvdb.org/15284

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.osvdb.org/15285

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.osvdb.org/15286

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.osvdb.org/15287

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/13036

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

http://www.securityfocus.com/bid/13038

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

http://www.securityfocus.com/bid/13039

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

http://www.securitytracker.com/alerts/2005/Apr/1013649.html

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

https://exchange.xforce.ibmcloud.com/vulnerabilities/19975

Source: af854a3a-2127-422b-91ae-364da2661108

24 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

2.2%

84th percentile

Exploitation Status

Not in CISA KEV

Affected Vendors

active_web_softwares