CVE-2004-1441

Опубликовано: 31 дек. 2004

Источник: nvd

CVSS2: 9.3

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in icq.cgi in Board Power 2.04PF allows remote attackers to inject arbitrary web script or HTML via the action parameter.

Ссылки

http://archives.neohapsis.com/archives/fulldisclosure/2004-07/0642.html
Exploit
http://www.kb.cert.org/vuls/id/744590
US Government Resource
http://www.securityfocus.com/bid/10734
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/16698
http://archives.neohapsis.com/archives/fulldisclosure/2004-07/0642.html
Exploit
http://www.kb.cert.org/vuls/id/744590
US Government Resource
http://www.securityfocus.com/bid/10734
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/16698

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:board_power:board_power:2.04pf:*:*:*:*:*:*:*

EPSS

Процентиль: 87%

0.03296

Низкий

9.3 Critical

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-m3pw-p3vj-wr9w

github

больше 3 лет назад