← back
CVE-2005-3128

CVE-2005-3128

EPSS 3.4%◆ VulnCheck KEV
Vexday Risk Score
60Attention
SSVC decision (CISA)
Act
Exploitation + impact → act immediately
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS EPSS 3.4%KEV nãoPoC públicaNuclei simMetasploit Patch referenciado
Lifecycle
29 Sep 2005Public PoC
04 Oct 2005Published on NVD
Recommendation: Patch as soon as possible — active exploitation confirmed.
Cross-site scripting (XSS) vulnerability in add.php in Address Add Plugin 1.9 and 2.0 for Squirrelmail allows remote attackers to inject arbitrary web script or HTML via the IMG tag.
Affected products
n/a · n/a
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.