Unrated severityNVD Advisory· Published Dec 20, 2005· Updated Jun 16, 2026
CVE-2005-4386
CVE-2005-4386
Description
Cross-site scripting (XSS) vulnerability in Colony CMS 2.75 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters.
Affected products
5cpe:2.3:a:colony:colony_cms:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:colony:colony_cms:*:*:*:*:*:*:*:*range: <=2.75
- cpe:2.3:a:colony:colony_e-commerce_cms:-:*:*:*:*:*:*:*
- cpe:2.3:a:colony:colony_enterprise_cms:*:*:*:*:*:*:*:*
- cpe:2.3:a:colony:colony_government_cms:*:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.