4.3
CVE-2004-1645
- EPSS 3.65%
- Veröffentlicht 30.08.2004 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:08:07
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginCross-site scripting (XSS) vulnerability in Xedus 1.0 allows remote attackers to execute arbitrary web script or HTML via the (1) username parameter to test.x, (2) username parameter to TestServer.x, or (3) param parameter to testgetrequest.x.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Jerod Moemeka ≫ Xedus Version1.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 3.65% | 0.881 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:N/I:P/A:N
|
http://marc.info/?l=bugtraq&m=109394018411394&w=2
http://secunia.com/advisories/12418
http://www.gulftech.org/?node=research&article_id=00047-08302004
http://www.securityfocus.com/bid/11071
https://exchange.xforce.ibmcloud.com/vulnerabilities/17166