Unrated severityNVD Advisory· Published Mar 26, 2005· Updated Jun 16, 2026
CVE-2005-0914
CVE-2005-0914
Description
Multiple cross-site scripting (XSS) vulnerabilities in CPG Dragonfly 9.0.2.0 allow remote attackers to inject arbitrary web script or HTML via (1) the profile parameter to index.php or (2) the cat parameter.
Affected products
2- cpe:2.3:a:cpg-nuke:cpg_dragonfly_cms:9.0.2_.0:*:*:*:*:*:*:*
- Range: <=9.0.2.0
Patches
Vulnerability mechanics
References
2- security.talte.net/content/view/252/46/nvdVendor Advisory
- securitytracker.com/idnvdVendor Advisory
News mentions
0No linked articles in our index yet.