CVE-2005-3473
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2005-3473
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in Simple PHP Blog 0.4.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) entry, (2) blog_subject, and (3) blog_text parameters (involving the temp_subject variable) in (a) preview_cgi.php and (b) preview_static_cgi.php, or (4) scheme_name parameter and (5) bg_color parameters (involving the preset_name and result variables) in (c) colors.php.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Simple PHP Blog多个跨站脚本漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Simple PHP Blog是一个采用PHP语言编写的开放源码的免费单用户Blog程序。 Simple PHP Blog中存在多个跨站脚本漏洞,远程攻击者利这些漏洞注入任意Web脚本或HTML。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2005-3473
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2005-3473
Please Login to view more intelligence information
- http://www.seclab.tuwien.ac.at/advisories/TUVSA-0511-001.txtx_refsource_MISC
- https://nvd.nist.gov/vuln/detail/CVE-2005-3473
Same Patch Batch · n/a · 2005-11-03 · 17 CVEs total
| CVE-2005-3483 | GraphOn GO-Global For Windows远程缓冲区溢出漏洞 | |
| CVE-2005-3484 | NeroNet目录遍历漏洞 | |
| CVE-2005-3485 | Glider Collect'n kill gl_playerEnter命令缓冲区溢出漏洞 | |
| CVE-2005-3486 | Scorched 3D多个格式化字符串漏洞 | |
| CVE-2005-3487 | Scorched 3D多个缓冲区溢出漏洞 | |
| CVE-2005-3488 | Scorched 3D ServerConnectHandler.cpp拒绝服务漏洞 | |
| CVE-2005-3472 | Sun Java System Communications Express信息泄露漏洞 | |
| CVE-2005-3474 | Sony First4Internet XCP DRM中aries.sys驱动隐藏文件、进程、注册表漏洞 | |
| CVE-2005-3475 | Hasbani Web Server形态异常的HTTP GET请求远程拒绝服务漏洞 | |
| CVE-2005-3476 | HP OpenVMS未明的本地拒绝服务漏洞 | |
| CVE-2005-3477 | Invision Gallery图像上传HTML注入漏洞 | |
| CVE-2005-3478 | PHPCafe Tutorial Manager Index.PHP SQL注入漏洞 | |
| CVE-2005-3479 | Ringtail CaseBook中login.asp跨站脚本漏洞 | |
| CVE-2005-3480 | Ringtail CaseBook中login.asp用户名信息泄露漏洞 | |
| CVE-2005-3481 | Cisco IOS系统定时器堆溢出漏洞 | |
| CVE-2005-3482 | Cisco Airespace无线LAN控制器允许未加密网络访问漏洞 |
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8196
JeecgBoot mLogin Endpoint LoginController.java authorization - CVE-2026-8195
JeecgBoot SVG File CommonController.java cross site scriptin - CVE-2026-8194
osTicket Dispatcher class.dispatcher.php cross-site request - CVE-2026-8193
Akaunting Invoice PDF Rendering dompdf.php server-side reque - CVE-2026-8186
Open5GS NF client.c ogs_sbi_client_send_via_scp_or_sepp out-
V. Comments for CVE-2005-3473
No comments yet