Unrated severityNVD Advisory· Published Apr 20, 2005· Updated Apr 16, 2026

CVE-2005-1233

Description

Cross-site scripting (XSS) vulnerability in index.php in PHP Labs proFile allows remote attackers to inject arbitrary web script or HTML via the (1) dir or (2) file parameters.

Affected products

Php Labs/Profile
cpe:2.3:a:php_labs:profile:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/13276nvdExploitVendor Advisory
www.securityfocus.com/bid/13282nvdExploitVendor Advisory
secunia.com/advisories/15027nvdVendor Advisory
securitytracker.com/idnvdVendor Advisory
www.osvdb.org/15697nvdVendor Advisory
www.snkenjoi.com/secadv/secadv7.txtnvdVendor Advisory
www.vupen.com/english/advisories/2005/0370nvd
exchange.xforce.ibmcloud.com/vulnerabilities/20169nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.006
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000