CVE-2005-4222

Published Dec 14, 2005
Last updated 3 days ago
CVSS info 4.3
Overview

Description: Multiple cross-site scripting (XSS) vulnerabilities in guestbook.cgi in Lars Ellingsen Guestserver 4.13 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified message fields.
Source: cve@mitre.org
NVD status: Deferred
Risk scores

CVSS 2.0

Type: Primary
Base score: 4.3
Impact score: 2.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:N/I:P/A:N
Weaknesses

nvd@nist.gov: NVD-CWE-Other
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:2.07:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "98C7EA57-5631-4051-8119-033207B6701D"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:2.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "614AF528-BEB0-43BC-96F7-C831F0518B21"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:2.90:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "845A9FAA-F7EB-4127-A579-761C99D0B1C4"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.01:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4AF95A06-4A38-4A23-95C8-C27840F6B287"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.02:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6E71117D-BD47-4305-896A-B25CEDF75847"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.03:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2112435C-30BE-42A4-8573-87787AFEDF60"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B5763E8B-A691-462E-B5C6-31BCFE504C6F"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.20:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DA09A92E-76B0-46B3-B5F3-911DA1715B3D"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.21:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "47175DC4-CCED-4EC2-8E56-CDE7E55C7D14"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.22:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7C9BCE16-3B2B-4413-97F5-36B2BA1EAAB5"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.30:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "79EDEA80-FF99-4E3F-ADC8-6C28401CE731"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.31:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "84768091-04A2-477D-A9F6-E9D63300BF94"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.32:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3BC2AF03-080D-450F-B0BD-056BD4849DC3"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.33:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "24824C3A-6D0D-40AD-8D74-A9FA9646D48B"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.34:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8714A446-4A73-47B9-8FE7-CA3CE3E1CD5C"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.35:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "69A9C400-C2D3-4EA2-9AEE-755339D2AD90"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.36:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F251BD43-81BF-4B01-8AE5-6005021EDB40"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.40:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9AA68518-D0E3-49A8-8127-0F4058BF90EC"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.41:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C678B2B8-3D6C-41DB-9E7E-660B27CE6C25"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.42:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D40777E4-FFB9-4FC7-8FF3-D3723400E07A"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.43:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "18410B77-F565-4A67-A05B-DFC50C644564"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.44:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C4042584-E1C1-49F9-A71D-5530465A78C3"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.45:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9743B55B-0F03-4D44-98F9-083767AB1738"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.46:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "37591D25-7C81-44F8-A9A5-F400CB1224EC"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.47:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E358237C-F84B-4FBA-9713-E6E4832294DC"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.48:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ED5ACC1C-AE93-41E7-9836-71F7CEF62854"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.60:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D2B72D74-E3E9-467C-83A4-CAD94115CB94"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.62:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7402BB2B-4F04-4F2E-83D9-5202F129FDCE"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.65:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CC7A8942-B299-4270-B3CC-0F6923777FC1"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.66:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "650CB745-569C-499E-8EC3-5D76750F0B39"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.80:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "166104FD-5FA5-4C52-A1BE-466270086090"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.81:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "814DE483-E377-4521-876F-35466D743A2C"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.82:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B7F41037-1076-43FF-81C1-F4B49FA0C8F5"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:3.83:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4102F028-2254-46FE-A456-62368203477F"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B029434D-0D97-4E3C-832A-174C73CF967E"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:4.01:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4338AC3D-EB37-4181-B2CC-91B4A7261BA6"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:4.05:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3B14DFEA-BAEB-481F-B778-83145A85D957"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:4.06:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "76766A57-8FC1-47DB-A7EC-16C9D454E3D6"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:4.07:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D07ADE87-734A-4C0B-BE16-F5FD10CB7BDB"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:4.08:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "004A519D-5686-4FB3-AD90-8B8EDC09B52E"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:4.09:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9D6198CB-6110-44EC-93A9-7D8364EC3B27"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:4.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0894E21E-DAD6-46A8-9734-E3BA57977997"
          },
          {
            "criteria": "cpe:2.3:a:lars_ellingsen:guestserver:4.13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C77CD50F-E705-45EB-8276-0B819C9F4BB7"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References
