CVE-2005-3814

N/A Unknown

Published: November 26, 2005 Modified: April 16, 2026

Description

Multiple cross-site scripting (XSS) vulnerabilities in SmartPPC Pro allow remote attackers to inject arbitrary web script or HTML via the username parameter in (1) directory.php, (2) frames.php, and (3) search.php.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://nightmaresecurity.net/index.php?showtopic=1015

Source: cve@mitre.org

URL Repurposed

http://secunia.com/advisories/17736

Source: cve@mitre.org

Vendor Advisory

http://securitytracker.com/id?1015259

Source: cve@mitre.org

http://www.addict3d.org/index.php?page=viewarticle&type=security&ID=5359

Source: cve@mitre.org

Exploit Vendor Advisory

http://www.osvdb.org/21090

Source: cve@mitre.org

http://www.osvdb.org/21091

Source: cve@mitre.org

http://www.osvdb.org/21092

Source: cve@mitre.org

http://www.securityfocus.com/bid/15567

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2005/2581

Source: cve@mitre.org

http://nightmaresecurity.net/index.php?showtopic=1015