Описание
Multiple cross-site scripting (XSS) vulnerabilities in header.php in WHM AutoPilot 2.4.6.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) site_title or (2) http_images parameter.
Multiple cross-site scripting (XSS) vulnerabilities in header.php in WHM AutoPilot 2.4.6.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) site_title or (2) http_images parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2004-1420
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18700
- http://marc.info/?l=bugtraq&m=110425620105529&w=2
- http://marc.info/?l=bugtraq&m=110451997904494&w=2
- http://secunia.com/advisories/13673
- http://www.gulftech.org/?node=research&article_id=00059-12272004
- http://www.securityfocus.com/bid/12119
- http://www.whmautopilot.com/forum/lofiversion/index.php/t6785.html
EPSS
Процентиль: 79%
0.01306
Низкий
CVE ID
Связанные уязвимости
nvd
больше 20 лет назад
Multiple cross-site scripting (XSS) vulnerabilities in header.php in WHM AutoPilot 2.4.6.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) site_title or (2) http_images parameter.
EPSS
Процентиль: 79%
0.01306
Низкий