CVE-2005-0085
EPSS 4.7%htdig - unsanitised input
Published: 4/27/2005Modified: 4/28/2026
Also known as:DEBIAN-CVE-2005-0085
Description
Cross-site scripting (XSS) vulnerability in ht://dig (htdig) before 3.1.6-r7 allows remote attackers to execute arbitrary web script or HTML via the config parameter, which is not properly sanitized before it is displayed in an error message.
Affected packages (2)
- Debian/htdigfrom 0, < 1:3.1.6-11
- Debian/htdigfrom 0, < 3.1.6-3woody1