ByteOS Network

NVD Vulnerability Details :

CVE-2005-4530

Modified

Source-cve@mitre.org

Published At-28 Dec, 2005 | 01:03

Updated At-16 Apr, 2026 | 00:27

Multiple cross-site scripting (XSS) vulnerabilities in AlstraSoft EPay Enterprise 3.0 (formerly DoPays) allow remote attackers to inject arbitrary web script or HTML via multiple unspecified parameters in (1) profile.htm, (2) card.htm, (3) bank.htm, (4) subscriptions.htm, (5) send.htm, (6) request.htm, (7) forgot.htm, (8) escrow.htm, (9) donations.htm, and (10) products.htm.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	5.1	MEDIUM	AV:N/AC:H/Au:N/C:P/I:P/A:P

Type: Primary

Version: 2.0

Base score: 5.1

Base severity: MEDIUM

Vector:

AV:N/AC:H/Au:N/C:P/I:P/A:P

CPE Matches

alstrasoft>>epay>>3.0

cpe:2.3:a:alstrasoft:epay:3.0:*:pro:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
NVD-CWE-Other	Primary	nvd@nist.gov

CWE ID: NVD-CWE-Other

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
http://pridels0.blogspot.com/2005/12/alstrasoft-epay-enterprise-v30-xss.html	cve@mitre.org	N/A
http://secunia.com/advisories/18153	cve@mitre.org	Vendor Advisory
http://www.osvdb.org/21883	cve@mitre.org	N/A
http://www.osvdb.org/21884	cve@mitre.org	N/A
http://www.osvdb.org/21885	cve@mitre.org	N/A
http://www.osvdb.org/21886	cve@mitre.org	N/A
http://www.osvdb.org/21887	cve@mitre.org	N/A
http://www.osvdb.org/21888	cve@mitre.org	N/A
http://www.osvdb.org/21889	cve@mitre.org	N/A
http://www.osvdb.org/21890	cve@mitre.org	N/A
http://www.osvdb.org/21891	cve@mitre.org	N/A
http://www.osvdb.org/21892	cve@mitre.org	N/A
http://www.securityfocus.com/bid/16055	cve@mitre.org	N/A
http://www.vupen.com/english/advisories/2005/3074	cve@mitre.org	N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/23852	cve@mitre.org	N/A
http://pridels0.blogspot.com/2005/12/alstrasoft-epay-enterprise-v30-xss.html	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/18153	af854a3a-2127-422b-91ae-364da2661108	Vendor Advisory
http://www.osvdb.org/21883	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.osvdb.org/21884	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.osvdb.org/21885	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.osvdb.org/21886	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.osvdb.org/21887	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.osvdb.org/21888	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.osvdb.org/21889	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.osvdb.org/21890	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.osvdb.org/21891	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.osvdb.org/21892	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.securityfocus.com/bid/16055	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.vupen.com/english/advisories/2005/3074	af854a3a-2127-422b-91ae-364da2661108	N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/23852	af854a3a-2127-422b-91ae-364da2661108	N/A