VYPR
Unrated severityNVD Advisory· Published Jun 9, 2005· Updated Jun 16, 2026

CVE-2005-1901

CVE-2005-1901

Description

Multiple cross-site scripting (XSS) vulnerabilities in Sawmill before 7.1.6 allow remote attackers to inject arbitrary web script or HTML via (1) the username in the Add User window or (2) the license key in the Licensing page.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

8
  • Sawmill/Sawmill8 versions
    cpe:2.3:a:sawmill:sawmill:*:*:*:*:*:*:*:*+ 7 more
    • cpe:2.3:a:sawmill:sawmill:*:*:*:*:*:*:*:*range: <=7.1
    • cpe:2.3:a:sawmill:sawmill:7.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:sawmill:sawmill:7.1.1b:*:*:*:*:*:*:*
    • cpe:2.3:a:sawmill:sawmill:7.1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:sawmill:sawmill:7.1.3:*:*:*:*:*:*:*
    • cpe:2.3:a:sawmill:sawmill:7.1.4:*:*:*:*:*:*:*
    • cpe:2.3:a:sawmill:sawmill:7.1.5:*:*:*:*:*:*:*
    • (no CPE)range: <7.1.6

Patches

Vulnerability mechanics

References

7

News mentions

0

No linked articles in our index yet.