Strix
26.1K

CVE-2005-4607

UnknownEPSS 1.33%

Last modified

CVE-2005-4607 is a vulnerability of currently unknown severity. Cross-site scripting (XSS) vulnerability in index.php in BugPort 1.147 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) ids[0], (2) action, (3) report_id, (4) devWherePair[1][1], and (5) binds[0] parameters.. EPSS estimates a 1.33% chance of exploitation in the next 30 days.

Description

Cross-site scripting (XSS) vulnerability in index.php in BugPort 1.147 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) ids[0], (2) action, (3) report_id, (4) devWherePair[1][1], and (5) binds[0] parameters.

Metrics

EPSS Probability
1.33%

67.5th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

VendorProductVersions
IncogenBugport1.039
IncogenBugport1.040
IncogenBugport1.041
IncogenBugport1.042
IncogenBugport1.043
IncogenBugport1.044
IncogenBugport1.045
IncogenBugport1.046
IncogenBugport1.047
IncogenBugport1.048
IncogenBugport1.049
IncogenBugport1.050
IncogenBugport1.051
IncogenBugport1.052
IncogenBugport1.053
IncogenBugport1.054
IncogenBugport1.055
IncogenBugport1.056
IncogenBugport1.057
IncogenBugport1.058
IncogenBugport1.059
IncogenBugport1.060
IncogenBugport1.061
IncogenBugport1.062
IncogenBugport1.063
IncogenBugport1.064
IncogenBugport1.065
IncogenBugport1.066
IncogenBugport1.067
IncogenBugport1.068
IncogenBugport1.069
IncogenBugport1.070
IncogenBugport1.071
IncogenBugport1.072
IncogenBugport1.073
IncogenBugport1.074
IncogenBugport1.075
IncogenBugport1.076
IncogenBugport1.077
IncogenBugport1.078
IncogenBugport1.079
IncogenBugport1.080
IncogenBugport1.081
IncogenBugport1.082
IncogenBugport1.083
IncogenBugport1.084
IncogenBugport1.085
IncogenBugport1.086
IncogenBugport1.087
IncogenBugport1.088

Showing 50 of 109 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2005-4607?
Cross-site scripting (XSS) vulnerability in index.php in BugPort 1.147 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) ids[0], (2) action, (3) report_id, (4) devWherePair[1][1], and (5) binds[0] parameters.
How severe is CVE-2005-4607?
Severity scoring for CVE-2005-4607 is pending analysis. The EPSS model estimates a 1.33% probability of exploitation in the next 30 days.
How do I fix CVE-2005-4607?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2005-4607?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST