exploitDog

CVE-2004-1700

Опубликовано: 14 окт. 2004

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in SettingsBase.php in Pinnacle ShowCenter 1.51 build 121 allows remote attackers to inject arbitrary HTML or web script via the Skin parameter, which is echoed in an error message.

Ссылки

http://secunia.com/advisories/12613
Exploit
Patch
Vendor Advisory
http://www.securityfocus.com/bid/11415
https://exchange.xforce.ibmcloud.com/vulnerabilities/17708
http://secunia.com/advisories/12613
Exploit
Patch
Vendor Advisory
http://www.securityfocus.com/bid/11415
https://exchange.xforce.ibmcloud.com/vulnerabilities/17708

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:pinnacle_systems:showcenter:1.51_build_121:*:*:*:*:*:*:*

EPSS

Процентиль: 60%

0.00396

Низкий

4.3 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-8j36-g58p-4q96

github

почти 4 года назад

Cross-site scripting (XSS) vulnerability in SettingsBase.php in Pinnacle ShowCenter 1.51 build 121 allows remote attackers to inject arbitrary HTML or web script via the Skin parameter, which is echoed in an error message.

EPSS

Процентиль: 60%

0.00396

Низкий

4.3 Medium

CVSS2

Дефекты

NVD-CWE-Other