4.3
CVE-2004-1059
- EPSS 1.21%
- Veröffentlicht 10.12.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:06:55
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginMultiple cross-site scripting (XSS) vulnerabilities in mnoGoSearch 3.2.26 and earlier allow remote attackers to inject arbitrary HTML and web script via the (1) next and (2) prev result search pages, and the (3) extended and (4) simple search forms.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Mnogosearch ≫ Mnogosearch Version3.1.19
Mnogosearch ≫ Mnogosearch Version3.1.20
Mnogosearch ≫ Mnogosearch Version3.2.10
Mnogosearch ≫ Mnogosearch Version3.2.13
Mnogosearch ≫ Mnogosearch Version3.2.14
Mnogosearch ≫ Mnogosearch Version3.2.15
Mnogosearch ≫ Mnogosearch Version3.2.16
Mnogosearch ≫ Mnogosearch Version3.2.17
Mnogosearch ≫ Mnogosearch Version3.2.18
Mnogosearch ≫ Mnogosearch Version3.2.19
Mnogosearch ≫ Mnogosearch Version3.2.20
Mnogosearch ≫ Mnogosearch Version3.2.21
Mnogosearch ≫ Mnogosearch Version3.2.22
Mnogosearch ≫ Mnogosearch Version3.2.23
Mnogosearch ≫ Mnogosearch Version3.2.24
Mnogosearch ≫ Mnogosearch Version3.2.25
Mnogosearch ≫ Mnogosearch Version3.2.26
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.21% | 0.644 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:N/I:P/A:N
|
http://lists.grok.org.uk/pipermail/full-disclosure/2004-December/030222.html
http://www.mikx.de/index.php?p=6
http://www.mnogosearch.org/history.html
http://www.securityfocus.com/bid/11895
https://exchange.xforce.ibmcloud.com/vulnerabilities/18434