CVE-2005-1075 Information

Description

Multiple cross-site scripting (XSS) vulnerabilities in RadScripts RadBids Gold 2 allow remote attackers to inject arbitrary web script or HTML via (1) the farea parameter to faq.php or the (2) cat (3) order or (4) area parameters to index.php.

Reference

http://secunia.com/advisories/14906 http://www.digitalparadox.org/advisories/rga.txt http://www.osvdb.org/15430 http://www.osvdb.org/15431 http://www.securityfocus.com/archive/1/395527 http://www.securityfocus.com/bid/13080 https://exchange.xforce.ibmcloud.com/vulnerabilities/20038