Описание
Cross-site scripting (XSS) vulnerability in Crafty Syntax Live Help (CSLH) before 2.7.4 allows remote attackers to inject arbitrary web script or HTML via the name field of a livehelp or chat session.
Cross-site scripting (XSS) vulnerability in Crafty Syntax Live Help (CSLH) before 2.7.4 allows remote attackers to inject arbitrary web script or HTML via the name field of a livehelp or chat session.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2004-2355
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16321
- http://archives.neohapsis.com/archives/bugtraq/2004-06/0054.html
- http://secunia.com/advisories/11789
- http://www.craftysyntax.com/CHANGELOG.txt
- http://www.osvdb.org/6744
- http://www.securityfocus.com/bid/10463
EPSS
Процентиль: 77%
0.01044
Низкий
CVE ID
Связанные уязвимости
nvd
около 21 года назад
Cross-site scripting (XSS) vulnerability in Crafty Syntax Live Help (CSLH) before 2.7.4 allows remote attackers to inject arbitrary web script or HTML via the name field of a livehelp or chat session.
EPSS
Процентиль: 77%
0.01044
Низкий