Описание
Cross-site scripting (XSS) vulnerability in Goollery 0.03 allows remote attackers to inject arbitrary HTML or web script via the (1) page parameter to viewalbum.php or (2) btopage parameter to viewpic.php.
Cross-site scripting (XSS) vulnerability in Goollery 0.03 allows remote attackers to inject arbitrary HTML or web script via the (1) page parameter to viewalbum.php or (2) btopage parameter to viewpic.php.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2004-2245
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17957
- http://securitytracker.com/id?1012062
- http://www.osvdb.org/11318
- http://www.osvdb.org/11319
- http://www.osvdb.org/11320
- http://www.osvdb.org/ref/11/11xxx-goollery_multiple.txt
- http://www.securityfocus.com/bid/11587
EPSS
Процентиль: 78%
0.01137
Низкий
CVE ID
Связанные уязвимости
nvd
около 21 года назад
Cross-site scripting (XSS) vulnerability in Goollery 0.03 allows remote attackers to inject arbitrary HTML or web script via the (1) page parameter to viewalbum.php or (2) btopage parameter to viewpic.php.
EPSS
Процентиль: 78%
0.01137
Низкий