Arbitrary Script Injection in kPlaylist 1.6 (build 400)
CVE-2005-3841 · MEDIUM Severity
AV:N/AC:M/AU:N/C:N/I:P/A:N
Cross-site scripting (XSS) vulnerability in kPlaylist 1.6 (build 400), and possibly other versions, allows remote attackers to inject arbitrary web script or HTML via the searchfor search parameter.
Learn more about our Web App Pen Testing.