Cross-Site Scripting in GNUMP3D Before Version 2.9.6
CVE-2005-3425

Currently unrated

Key Information:

Vendor: Gnu
Status: Gnump3d
Vendor: CVE Published:; 1 November 2005

Summary

GNUMP3D versions prior to 2.9.6 are susceptible to a cross-site scripting (XSS) vulnerability that enables remote attackers to inject arbitrary web scripts or HTML. This vulnerability can be exploited through unspecified vectors, potentially compromising user data and the integrity of the application. Users of GNUMP3D should ensure they are using a patched version to mitigate the risks associated with this security issue.

References

http://www.novell.com/linux/security/advisories/2005_28_s...

vendor-advisoryx_refsource_SUSE

http://securitytracker.com/id?1015118

vdb-entryx_refsource_SECTRACK

http://secunia.com/advisories/17831

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Nov 1, 2005
Vulnerability Reserved
Nov 1, 2005