Vulnerability in Maxdev Md-pro

CVE-2005-2839

Multiple cross-site scripting (XSS) vulnerabilities in MAXdev MD-Pro 1.0.72 allow remote attackers to inject arbitrary web script or HTML via (1) dl-search.php or (2) wl-search.php.

EPSS: 0.009 (56.7th percentile) — read the EPSS interpretation.

Affected products

References

  • cve@mitre.org (Patch, vdb-entry, x_refsource_SECTRACK, Vendor Advisory)