CVE-2004-2522

Опубликовано: 31 дек. 2004

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in web.tmpl in Gattaca Server 2003 1.1.10.0 allows remote attackers to inject arbitrary web script or HTML via the (1) template or (2) language parameter.

Ссылки

http://members.lycos.co.uk/r34ct/main/Gattaca%20Server%202003.txt
Vendor Advisory
http://secunia.com/advisories/12071
Exploit
Vendor Advisory
http://securitytracker.com/id?1010703
Exploit
http://www.gattaca-server.com/cgi-bin/yabb/YaBB.pl?board=gattaca_discussion%3Baction=display%3Bnum=1091194176%3Bstart=0#0
http://www.osvdb.org/7927
Exploit
http://www.securityfocus.com/bid/10731
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/16701
http://members.lycos.co.uk/r34ct/main/Gattaca%20Server%202003.txt
Vendor Advisory
http://secunia.com/advisories/12071
Exploit
Vendor Advisory
http://securitytracker.com/id?1010703
Exploit
http://www.gattaca-server.com/cgi-bin/yabb/YaBB.pl?board=gattaca_discussion%3Baction=display%3Bnum=1091194176%3Bstart=0#0
http://www.osvdb.org/7927
Exploit
http://www.securityfocus.com/bid/10731
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/16701

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:geeos_team:gattaca_server_2003:1.1.10.0:*:*:*:*:*:*:*

EPSS

Процентиль: 81%

0.01529

Низкий

4.3 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-8mv9-p6wj-fc88

github

почти 4 года назад