ByteOS Network

Vulnerability Details :

CVE-2005-4530

Assigner-mitre

Assigner Org ID-8254265b-2729-46b6-b9e3-3dfca2d5bfca

Published At-28 Dec, 2005 | 01:00

Updated At-07 Aug, 2024 | 23:46

Multiple cross-site scripting (XSS) vulnerabilities in AlstraSoft EPay Enterprise 3.0 (formerly DoPays) allow remote attackers to inject arbitrary web script or HTML via multiple unspecified parameters in (1) profile.htm, (2) card.htm, (3) bank.htm, (4) subscriptions.htm, (5) send.htm, (6) request.htm, (7) forgot.htm, (8) escrow.htm, (9) donations.htm, and (10) products.htm.

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

▼Common Vulnerabilities and Exposures (CVE)

cve.org

Assigner:mitre

Assigner Org ID:8254265b-2729-46b6-b9e3-3dfca2d5bfca

Published At:28 Dec, 2005 | 01:00

Updated At:07 Aug, 2024 | 23:46

▼CVE Numbering Authority (CNA)

Affected Products

Vendor

n/a

Product

n/a

Versions

Affected

Problem Types

Type	CWE ID	Description
text	N/A	n/a

Type: text

CWE ID: N/A

Description: n/a

References

Hyperlink	Resource
http://www.osvdb.org/21887	vdb-entry x_refsource_OSVDB
http://www.vupen.com/english/advisories/2005/3074	vdb-entry x_refsource_VUPEN
http://secunia.com/advisories/18153	third-party-advisory x_refsource_SECUNIA
http://www.osvdb.org/21883	vdb-entry x_refsource_OSVDB
http://www.osvdb.org/21891	vdb-entry x_refsource_OSVDB
http://www.osvdb.org/21885	vdb-entry x_refsource_OSVDB
http://www.osvdb.org/21892	vdb-entry x_refsource_OSVDB
http://www.osvdb.org/21888	vdb-entry x_refsource_OSVDB
https://exchange.xforce.ibmcloud.com/vulnerabilities/23852	vdb-entry x_refsource_XF
http://www.securityfocus.com/bid/16055	vdb-entry x_refsource_BID
http://pridels0.blogspot.com/2005/12/alstrasoft-epay-enterprise-v30-xss.html	x_refsource_MISC
http://www.osvdb.org/21889	vdb-entry x_refsource_OSVDB
http://www.osvdb.org/21884	vdb-entry x_refsource_OSVDB
http://www.osvdb.org/21886	vdb-entry x_refsource_OSVDB
http://www.osvdb.org/21890	vdb-entry x_refsource_OSVDB

Hyperlink: http://www.osvdb.org/21887

Resource:

vdb-entry

x_refsource_OSVDB

Hyperlink: http://www.vupen.com/english/advisories/2005/3074

Resource:

vdb-entry

x_refsource_VUPEN

Hyperlink: http://secunia.com/advisories/18153

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.osvdb.org/21883

Resource:

vdb-entry

x_refsource_OSVDB

Hyperlink: http://www.osvdb.org/21891

Resource:

vdb-entry

x_refsource_OSVDB

Hyperlink: http://www.osvdb.org/21885

Resource:

vdb-entry

x_refsource_OSVDB

Hyperlink: http://www.osvdb.org/21892

Resource:

vdb-entry

x_refsource_OSVDB

Hyperlink: http://www.osvdb.org/21888

Resource:

vdb-entry

x_refsource_OSVDB

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/23852

Resource:

vdb-entry

x_refsource_XF

Hyperlink: http://www.securityfocus.com/bid/16055

Resource:

vdb-entry

x_refsource_BID

Hyperlink: http://pridels0.blogspot.com/2005/12/alstrasoft-epay-enterprise-v30-xss.html

Resource:

x_refsource_MISC

Hyperlink: http://www.osvdb.org/21889

Resource:

vdb-entry

x_refsource_OSVDB

Hyperlink: http://www.osvdb.org/21884

Resource:

vdb-entry

x_refsource_OSVDB

Hyperlink: http://www.osvdb.org/21886

Resource:

vdb-entry

x_refsource_OSVDB

Hyperlink: http://www.osvdb.org/21890

Resource:

vdb-entry

x_refsource_OSVDB

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
http://www.osvdb.org/21887	vdb-entry x_refsource_OSVDB x_transferred
http://www.vupen.com/english/advisories/2005/3074	vdb-entry x_refsource_VUPEN x_transferred
http://secunia.com/advisories/18153	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.osvdb.org/21883	vdb-entry x_refsource_OSVDB x_transferred
http://www.osvdb.org/21891	vdb-entry x_refsource_OSVDB x_transferred
http://www.osvdb.org/21885	vdb-entry x_refsource_OSVDB x_transferred
http://www.osvdb.org/21892	vdb-entry x_refsource_OSVDB x_transferred
http://www.osvdb.org/21888	vdb-entry x_refsource_OSVDB x_transferred
https://exchange.xforce.ibmcloud.com/vulnerabilities/23852	vdb-entry x_refsource_XF x_transferred
http://www.securityfocus.com/bid/16055	vdb-entry x_refsource_BID x_transferred
http://pridels0.blogspot.com/2005/12/alstrasoft-epay-enterprise-v30-xss.html	x_refsource_MISC x_transferred
http://www.osvdb.org/21889	vdb-entry x_refsource_OSVDB x_transferred
http://www.osvdb.org/21884	vdb-entry x_refsource_OSVDB x_transferred
http://www.osvdb.org/21886	vdb-entry x_refsource_OSVDB x_transferred
http://www.osvdb.org/21890	vdb-entry x_refsource_OSVDB x_transferred

Hyperlink: http://www.osvdb.org/21887

Resource:

vdb-entry

x_refsource_OSVDB

x_transferred

Hyperlink: http://www.vupen.com/english/advisories/2005/3074

Resource:

vdb-entry

x_refsource_VUPEN

x_transferred

Hyperlink: http://secunia.com/advisories/18153

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://www.osvdb.org/21883

Resource:

vdb-entry

x_refsource_OSVDB

x_transferred

Hyperlink: http://www.osvdb.org/21891

Resource:

vdb-entry

x_refsource_OSVDB

x_transferred

Hyperlink: http://www.osvdb.org/21885

Resource:

vdb-entry

x_refsource_OSVDB

x_transferred

Hyperlink: http://www.osvdb.org/21892

Resource:

vdb-entry

x_refsource_OSVDB

x_transferred

Hyperlink: http://www.osvdb.org/21888

Resource:

vdb-entry

x_refsource_OSVDB

x_transferred

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/23852

Resource:

vdb-entry

x_refsource_XF

x_transferred

Hyperlink: http://www.securityfocus.com/bid/16055

Resource:

vdb-entry

x_refsource_BID

x_transferred

Hyperlink: http://pridels0.blogspot.com/2005/12/alstrasoft-epay-enterprise-v30-xss.html

Resource:

x_refsource_MISC

x_transferred

Hyperlink: http://www.osvdb.org/21889

Resource:

vdb-entry

x_refsource_OSVDB

x_transferred

Hyperlink: http://www.osvdb.org/21884

Resource:

vdb-entry

x_refsource_OSVDB

x_transferred

Hyperlink: http://www.osvdb.org/21886

Resource:

vdb-entry

x_refsource_OSVDB

x_transferred

Hyperlink: http://www.osvdb.org/21890

Resource:

vdb-entry

x_refsource_OSVDB

x_transferred

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:cve@mitre.org

Published At:28 Dec, 2005 | 01:03

Updated At:03 Apr, 2025 | 01:03

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	5.1	MEDIUM	AV:N/AC:H/Au:N/C:P/I:P/A:P

Type: Primary

Version: 2.0

Base score: 5.1

Base severity: MEDIUM

Vector:

AV:N/AC:H/Au:N/C:P/I:P/A:P

CPE Matches

alstrasoft>>epay>>3.0

cpe:2.3:a:alstrasoft:epay:3.0:*:pro:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
NVD-CWE-Other	Primary	nvd@nist.gov

CWE ID: NVD-CWE-Other

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
http://pridels0.blogspot.com/2005/12/alstrasoft-epay-enterprise-v30-xss.html	cve@mitre.org	N/A
http://secunia.com/advisories/18153	cve@mitre.org	Vendor Advisory
http://www.osvdb.org/21883	cve@mitre.org	N/A
http://www.osvdb.org/21884	cve@mitre.org	N/A
http://www.osvdb.org/21885	cve@mitre.org	N/A
http://www.osvdb.org/21886	cve@mitre.org	N/A
http://www.osvdb.org/21887	cve@mitre.org	N/A
http://www.osvdb.org/21888	cve@mitre.org	N/A
http://www.osvdb.org/21889	cve@mitre.org	N/A
http://www.osvdb.org/21890	cve@mitre.org	N/A
http://www.osvdb.org/21891	cve@mitre.org	N/A
http://www.osvdb.org/21892	cve@mitre.org	N/A
http://www.securityfocus.com/bid/16055	cve@mitre.org	N/A
http://www.vupen.com/english/advisories/2005/3074	cve@mitre.org	N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/23852	cve@mitre.org	N/A
http://pridels0.blogspot.com/2005/12/alstrasoft-epay-enterprise-v30-xss.html	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/18153	af854a3a-2127-422b-91ae-364da2661108	Vendor Advisory
http://www.osvdb.org/21883	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.osvdb.org/21884	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.osvdb.org/21885	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.osvdb.org/21886	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.osvdb.org/21887	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.osvdb.org/21888	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.osvdb.org/21889	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.osvdb.org/21890	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.osvdb.org/21891	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.osvdb.org/21892	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.securityfocus.com/bid/16055	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.vupen.com/english/advisories/2005/3074	af854a3a-2127-422b-91ae-364da2661108	N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/23852	af854a3a-2127-422b-91ae-364da2661108	N/A