Unrated severityNVD Advisory· Published Jul 6, 2005· Updated Jun 16, 2026
CVE-2005-2167
CVE-2005-2167
Description
Cross-site scripting (XSS) vulnerability in index.php in Plague News System 0.6 and earlier allows remote attackers to inject arbitrary web script or HTML via the cid parameter.
Affected products
5cpe:2.3:a:frozenplague.net:plague_news_system:0.4:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:frozenplague.net:plague_news_system:0.4:*:*:*:*:*:*:*
- cpe:2.3:a:frozenplague.net:plague_news_system:0.4rc3:*:*:*:*:*:*:*
- cpe:2.3:a:frozenplague.net:plague_news_system:0.4rc4:*:*:*:*:*:*:*
- cpe:2.3:a:frozenplague.net:plague_news_system:0.6:*:*:*:*:*:*:*
- Range: <=0.6
Patches
Vulnerability mechanics
References
2- dark-assassins.com/forum/viewtopic.phpnvdVendor AdvisoryURL Repurposed
- secunia.com/advisories/15902nvdVendor Advisory
News mentions
0No linked articles in our index yet.