CVE-2005-1494 Information

Description

Multiple cross-site scripting (XSS) vulnerabilities in admin.cgi in MegaBook 2.0 and 2.1 allow remote attackers to inject arbitrary web script or HTML via the (1) entryid or (2) password parameter.

Reference

http://marc.info/?l=bugtraq&m=111531609618182&w=2 http://www.securityfocus.com/archive/1/397809 http://www.securityfocus.com/bid/13522 https://exchange.xforce.ibmcloud.com/vulnerabilities/20669