Search criteria
1 vulnerability found for HTTPD-User-Manage by Lincoln D. Stein
JVNDB-2005-000795
Vulnerability from jvndb - Published: 2008-05-21 00:00 - Updated:2008-05-21 00:00Summary
HTTPD-User-Manage cross-site scripting vulnerability
Details
HTTPD-User-Manage is a set of Perl modules for managing user authentication information for web servers. It contains a cross-site scripting vulnerability in its CGI as it does not properly validate input strings.
This problem does not occur when only the library for managing database is solely used.
References
| Type | URL | |
|---|---|---|
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2005/JVNDB-2005-000795.html",
"dc:date": "2008-05-21T00:00+09:00",
"dcterms:issued": "2008-05-21T00:00+09:00",
"dcterms:modified": "2008-05-21T00:00+09:00",
"description": "HTTPD-User-Manage is a set of Perl modules for managing user authentication information for web servers. It contains a cross-site scripting vulnerability in its CGI as it does not properly validate input strings.\r\n\r\nThis problem does not occur when only the library for managing database is solely used.",
"link": "https://jvndb.jvn.jp/en/contents/2005/JVNDB-2005-000795.html",
"sec:cpe": {
"#text": "cpe:/a:lincoln_d._stein:httpd-user-manage",
"@product": "HTTPD-User-Manage",
"@vendor": "Lincoln D. Stein",
"@version": "2.2"
},
"sec:cvss": {
"@score": "4.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"@version": "2.0"
},
"sec:identifier": "JVNDB-2005-000795",
"sec:references": {
"#text": "http://jvn.jp/en/jp/JVN30451602/index.html",
"@id": "JVN#30451602",
"@source": "JVN"
},
"title": "HTTPD-User-Manage cross-site scripting vulnerability"
}