Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2004-1384

Опубликовано: 31 дек. 2004
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 4.3

Описание

Multiple cross-site scripting (XSS) vulnerabilities in phpGroupWare 0.9.16.003 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) kp3, (2) type, (3) msg, (4) forum_id, (5) pos, (6) cats_app, (7) cat_id, (8) msgball[msgnum], (9) fldball[acctnum] parameters to index.php or (10) ticket_id to viewticket_details.php.

РелизСтатусПримечание
dapper

released

0.9.16.010-1
devel

released

0.9.16.010-1
edgy

released

0.9.16.010-1
feisty

released

0.9.16.010-1
upstream

needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 87%
0.03206
Низкий

4.3 Medium

CVSS2

Связанные уязвимости

nvd логотип

CVE-2004-1384

nvd
почти 21 год назад

Multiple cross-site scripting (XSS) vulnerabilities in phpGroupWare 0.9.16.003 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) kp3, (2) type, (3) msg, (4) forum_id, (5) pos, (6) cats_app, (7) cat_id, (8) msgball[msgnum], (9) fldball[acctnum] parameters to index.php or (10) ticket_id to viewticket_details.php.

debian логотип

CVE-2004-1384

debian
почти 21 год назад

Multiple cross-site scripting (XSS) vulnerabilities in phpGroupWare 0. ...

github логотип

GHSA-gg9c-qgvf-5vrx

github
больше 3 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in phpGroupWare 0.9.16.003 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) kp3, (2) type, (3) msg, (4) forum_id, (5) pos, (6) cats_app, (7) cat_id, (8) msgball[msgnum], (9) fldball[acctnum] parameters to index.php or (10) ticket_id to viewticket_details.php.

EPSS

Процентиль: 87%
0.03206
Низкий

4.3 Medium

CVSS2