CVE-2005-0264 Information

Description

Multiple cross-site scripting (XSS) vulnerabilities in browse.php in OWL 0.7 and 0.8 allow remote attackers to inject arbitrary web script or HTML via the (1) expand or (2) order parameter.

Reference

http://marc.info/?l=bugtraq&m=110461644407935&w=2 http://secunia.com/advisories/13695 http://www.securityfocus.com/bid/12114 https://exchange.xforce.ibmcloud.com/vulnerabilities/18705