CVE-2004-1837

Опубликовано: 31 дек. 2004

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in Mod_survey 3.0.x before 3.0.16-pre2 and 3.2.x before 3.2.0-pre4 allows remote attackers to inject arbitrary web script or HTML via the certain survey fields or error messages for malformed query strings.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:joel_palmius:mod_survey:3.0.0:*:*:*:*:*:*:*

cpe:2.3:a:joel_palmius:mod_survey:3.0.1:*:*:*:*:*:*:*

cpe:2.3:a:joel_palmius:mod_survey:3.0.2:*:*:*:*:*:*:*

cpe:2.3:a:joel_palmius:mod_survey:3.0.3:*:*:*:*:*:*:*

cpe:2.3:a:joel_palmius:mod_survey:3.0.4:*:*:*:*:*:*:*

cpe:2.3:a:joel_palmius:mod_survey:3.0.5:*:*:*:*:*:*:*

cpe:2.3:a:joel_palmius:mod_survey:3.0.6:*:*:*:*:*:*:*

cpe:2.3:a:joel_palmius:mod_survey:3.0.9:*:*:*:*:*:*:*

cpe:2.3:a:joel_palmius:mod_survey:3.0.10:*:*:*:*:*:*:*

cpe:2.3:a:joel_palmius:mod_survey:3.0.11:*:*:*:*:*:*:*

cpe:2.3:a:joel_palmius:mod_survey:3.0.12:*:*:*:*:*:*:*

cpe:2.3:a:joel_palmius:mod_survey:3.0.13:*:*:*:*:*:*:*

cpe:2.3:a:joel_palmius:mod_survey:3.0.14:*:*:*:*:*:*:*

cpe:2.3:a:joel_palmius:mod_survey:3.0.14d:*:*:*:*:*:*:*

cpe:2.3:a:joel_palmius:mod_survey:3.0.14e:*:*:*:*:*:*:*

cpe:2.3:a:joel_palmius:mod_survey:3.0.15:*:*:*:*:*:*:*

cpe:2.3:a:joel_palmius:mod_survey:3.0.15_pre1:*:*:*:*:*:*:*

cpe:2.3:a:joel_palmius:mod_survey:3.0.15_pre2:*:*:*:*:*:*:*

cpe:2.3:a:joel_palmius:mod_survey:3.0.15_pre3:*:*:*:*:*:*:*

cpe:2.3:a:joel_palmius:mod_survey:3.0.15_pre4:*:*:*:*:*:*:*

cpe:2.3:a:joel_palmius:mod_survey:3.0.15_pre5:*:*:*:*:*:*:*

cpe:2.3:a:joel_palmius:mod_survey:3.0.15_pre6:*:*:*:*:*:*:*

cpe:2.3:a:joel_palmius:mod_survey:3.0.16_pre1:*:*:*:*:*:*:*

cpe:2.3:a:joel_palmius:mod_survey:3.2.0_pre1:*:*:*:*:*:*:*

cpe:2.3:a:joel_palmius:mod_survey:3.2.0_pre2:*:*:*:*:*:*:*

cpe:2.3:a:joel_palmius:mod_survey:3.2.0_pre3:*:*:*:*:*:*:*

EPSS

Процентиль: 57%

0.00346

Низкий

4.3 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-gjf8-wr7v-8jg5

github

больше 3 лет назад