ByteOS Network

NVD Vulnerability Details :

CVE-2005-4060

Modified

Source-cve@mitre.org

Published At-07 Dec, 2005 | 11:03

Updated At-16 Apr, 2026 | 00:27

Cross-site scripting (XSS) vulnerability in search.asp in rwAuction Pro 4.0 and 5.0 allows remote attackers to inject arbitrary web script or HTML via the searchtxt parameter.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	4.3	MEDIUM	AV:N/AC:M/Au:N/C:N/I:P/A:N

Type: Primary

Version: 2.0

Base score: 4.3

Base severity: MEDIUM

Vector:

AV:N/AC:M/Au:N/C:N/I:P/A:N

CPE Matches

rainworx>>rwauction_pro>>4.0

cpe:2.3:a:rainworx:rwauction_pro:4.0:*:*:*:*:*:*:*

rainworx>>rwauction_pro>>5.0

cpe:2.3:a:rainworx:rwauction_pro:5.0:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-79	Primary	nvd@nist.gov

CWE ID: CWE-79

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
http://pridels-team.blogspot.com/2007/06/rwauction-pro-xss-vuln.html	cve@mitre.org	N/A
http://pridels0.blogspot.com/2005/12/rwauction-pro-v40-xss-vuln.html	cve@mitre.org	N/A
http://secunia.com/advisories/17905	cve@mitre.org	N/A
http://www.attrition.org/pipermail/vim/2006-April/000713.html	cve@mitre.org	N/A
http://www.osvdb.org/21475	cve@mitre.org	N/A
http://www.securityfocus.com/bid/15740	cve@mitre.org	N/A
http://www.vupen.com/english/advisories/2005/2758	cve@mitre.org	N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/23466	cve@mitre.org	N/A
http://pridels-team.blogspot.com/2007/06/rwauction-pro-xss-vuln.html	af854a3a-2127-422b-91ae-364da2661108	N/A
http://pridels0.blogspot.com/2005/12/rwauction-pro-v40-xss-vuln.html	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/17905	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.attrition.org/pipermail/vim/2006-April/000713.html	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.osvdb.org/21475	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.securityfocus.com/bid/15740	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.vupen.com/english/advisories/2005/2758	af854a3a-2127-422b-91ae-364da2661108	N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/23466	af854a3a-2127-422b-91ae-364da2661108	N/A