Unrated severityNVD Advisory· Published May 20, 2005· Updated Jun 16, 2026
CVE-2005-1676
CVE-2005-1676
Description
Multiple cross-site scripting (XSS) vulnerabilities in Groove Mobile Workspace in Groove Virtual Office before 3.1 build 2338, before 3.1a build 2364, and Groove Workspace before 2.5n build 1871 allow remote attackers to inject arbitrary web script or HTML via the (1) picture columns embedded within SharePoint lists or (2) drop-down menus in a SharePoint list.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:groove:groove_workspace:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:groove:groove_workspace:*:*:*:*:*:*:*:*range: <=2.5n_build_1871
- (no CPE)range: <3.1 build 2338, <3.1a build 2364
Patches
Vulnerability mechanics
References
4- secunia.com/advisories/15421nvdPatchVendor Advisory
- www.kb.cert.org/vuls/id/372618nvdThird Party AdvisoryUS Government Resource
- www.kb.cert.org/vuls/id/514386nvdThird Party AdvisoryUS Government Resource
- www.kb.cert.org/vuls/id/JGEI-6BCRCCnvdThird Party AdvisoryUS Government Resource
News mentions
0No linked articles in our index yet.