Unrated severityNVD Advisory· Published Dec 22, 2005· Updated Jun 16, 2026
CVE-2005-4492
CVE-2005-4492
Description
Cross-site scripting (XSS) vulnerability in Starphire SiteSage 5.0.18 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters, possibly the norelay_highlight_words parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:a:starphire_technologies:sitesage:5.0.18:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:starphire_technologies:sitesage:5.0.18:*:*:*:*:*:*:*
- cpe:2.3:a:starphire_technologies:sitesage-ee:*:*:*:*:*:*:*:*
- cpe:2.3:a:starphire_technologies:sitesage-le:*:*:*:*:*:*:*:*
- cpe:2.3:a:starphire_technologies:sitesage-sb:*:*:*:*:*:*:*:*
- cpe:2.3:a:starphire_technologies:sitesage-se:*:*:*:*:*:*:*:*
- (no CPE)range: <=5.0.18
Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.