Unrated severityNVD Advisory· Published Nov 1, 2005· Updated Apr 16, 2026
CVE-2005-3406
CVE-2005-3406
Description
Cross-site scripting (XSS) vulnerability in phpESP 1.7.5 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
Affected products
23cpe:2.3:a:butterfat:phpesp:1.3_final:*:*:*:*:*:*:*+ 22 more
- cpe:2.3:a:butterfat:phpesp:1.3_final:*:*:*:*:*:*:*
- cpe:2.3:a:butterfat:phpesp:1.4_beta1:*:*:*:*:*:*:*
- cpe:2.3:a:butterfat:phpesp:1.4_beta2:*:*:*:*:*:*:*
- cpe:2.3:a:butterfat:phpesp:1.4_beta3:*:*:*:*:*:*:*
- cpe:2.3:a:butterfat:phpesp:1.4_final:*:*:*:*:*:*:*
- cpe:2.3:a:butterfat:phpesp:1.5_final:*:*:*:*:*:*:*
- cpe:2.3:a:butterfat:phpesp:1.5_rc1:*:*:*:*:*:*:*
- cpe:2.3:a:butterfat:phpesp:1.5_rc2:*:*:*:*:*:*:*
- cpe:2.3:a:butterfat:phpesp:1.5_rc3:*:*:*:*:*:*:*
- cpe:2.3:a:butterfat:phpesp:1.6.1_final:*:*:*:*:*:*:*
- cpe:2.3:a:butterfat:phpesp:1.6_final:*:*:*:*:*:*:*
- cpe:2.3:a:butterfat:phpesp:1.6_rc1:*:*:*:*:*:*:*
- cpe:2.3:a:butterfat:phpesp:1.6_rc2:*:*:*:*:*:*:*
- cpe:2.3:a:butterfat:phpesp:1.6_rc3:*:*:*:*:*:*:*
- cpe:2.3:a:butterfat:phpesp:1.7:*:*:*:*:*:*:*
- cpe:2.3:a:butterfat:phpesp:1.7.1:*:*:*:*:*:*:*
- cpe:2.3:a:butterfat:phpesp:1.7.2:*:*:*:*:*:*:*
- cpe:2.3:a:butterfat:phpesp:1.7.5:*:*:*:*:*:*:*
- cpe:2.3:a:butterfat:phpesp:1.7.5_dev1:*:*:*:*:*:*:*
- cpe:2.3:a:butterfat:phpesp:1.7.5_dev2:*:*:*:*:*:*:*
- cpe:2.3:a:butterfat:phpesp:1.7.5_dev3:*:*:*:*:*:*:*
- cpe:2.3:a:butterfat:phpesp:1.7_dev:*:*:*:*:*:*:*
- cpe:2.3:a:butterfat:phpesp:1.7_rc1:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6News mentions
0No linked articles in our index yet.