NVD

Id
67113  
Name
CVE-2005-1374  
Description
Multiple cross-site scripting (XSS) vulnerabilities in Claroline 1.5.3 through 1.6 Release Candidate 1, and possibly Dokeos, allow remote attackers to inject arbitrary web script or HTML via (1) exercise_result.php, (2) exercice_submit.php, (3) agenda.php, (4) learningPathList.php, (5) learningPathAdmin.php, (6) learningPath.php, (7) userLog.php, (8) tool parameter to toolaccess_details.php, (9) data parameter to user_access_details.php, or (10) coursePath parameter to myagenda.php.  
Reject
 
CVSS Version
2  
CVSS Score
6.8  
Severity
Medium  
CVSS Base Score
6.8  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:P)  
Pub Date
2017-07-18  
Published
2005-05-03  
Modified Date
2017-07-10  
Seq
2005-1374  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
348244 67113 CVE-2005-1374 20050427 ZRCSA-200501 - Multiple vulnerabilities in Claroline  View
348245 67113 CVE-2005-1374 1013822  View
348246 67113 CVE-2005-1374 http://www.claroline.net/news.php#85  View
348247 67113 CVE-2005-1374 13407  View
348248 67113 CVE-2005-1374 claroline-multiple-scripts-xss(20295)  View

Related JVN