6.8
CVE-2004-1213
- EPSS 2%
- Veröffentlicht 10.01.2005 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:07:15
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginCross-site scripting (XSS) vulnerability in index.php in Advanced Guestbook 2.3.1, 2.2, and possibly other versions allows remote attackers to inject arbitrary web script or HTML via the entry parameter.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Advanced Guestbook ≫ Advanced Guestbook Version2.2
Advanced Guestbook ≫ Advanced Guestbook Version2.3.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2% | 0.782 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.8 | 8.6 | 6.4 |
AV:N/AC:M/Au:N/C:P/I:P/A:P
|
http://marc.info/?l=bugtraq&m=110206527624612&w=2
http://marc.info/?l=bugtraq&m=110238530129498&w=2
http://www.securityfocus.com/bid/11798
https://exchange.xforce.ibmcloud.com/vulnerabilities/18334