CVE-2005-4044 Information

Description

Cross-site scripting (XSS) vulnerability in search.cgi in Amazon Search Directory 1.0.0 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors possibly the search parameter.

Reference

http://pridels0.blogspot.com/2005/12/amazon-search-directory-xss-vuln.html http://secunia.com/advisories/17875 http://www.osvdb.org/21438 http://www.vupen.com/english/advisories/2005/2735 https://exchange.xforce.ibmcloud.com/vulnerabilities/23408