4.3
CVE-2004-1837
- EPSS 0.35%
- Veröffentlicht 31.12.2004 05:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginCross-site scripting (XSS) vulnerability in Mod_survey 3.0.x before 3.0.16-pre2 and 3.2.x before 3.2.0-pre4 allows remote attackers to inject arbitrary web script or HTML via the certain survey fields or error messages for malformed query strings.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Joel Palmius ≫ Mod Survey Version3.0.0
Joel Palmius ≫ Mod Survey Version3.0.1
Joel Palmius ≫ Mod Survey Version3.0.2
Joel Palmius ≫ Mod Survey Version3.0.3
Joel Palmius ≫ Mod Survey Version3.0.4
Joel Palmius ≫ Mod Survey Version3.0.5
Joel Palmius ≫ Mod Survey Version3.0.6
Joel Palmius ≫ Mod Survey Version3.0.9
Joel Palmius ≫ Mod Survey Version3.0.10
Joel Palmius ≫ Mod Survey Version3.0.11
Joel Palmius ≫ Mod Survey Version3.0.12
Joel Palmius ≫ Mod Survey Version3.0.13
Joel Palmius ≫ Mod Survey Version3.0.14
Joel Palmius ≫ Mod Survey Version3.0.14d
Joel Palmius ≫ Mod Survey Version3.0.14e
Joel Palmius ≫ Mod Survey Version3.0.15
Joel Palmius ≫ Mod Survey Version3.0.15_pre1
Joel Palmius ≫ Mod Survey Version3.0.15_pre2
Joel Palmius ≫ Mod Survey Version3.0.15_pre3
Joel Palmius ≫ Mod Survey Version3.0.15_pre4
Joel Palmius ≫ Mod Survey Version3.0.15_pre5
Joel Palmius ≫ Mod Survey Version3.0.15_pre6
Joel Palmius ≫ Mod Survey Version3.0.16_pre1
Joel Palmius ≫ Mod Survey Version3.2.0_pre1
Joel Palmius ≫ Mod Survey Version3.2.0_pre2
Joel Palmius ≫ Mod Survey Version3.2.0_pre3
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.35% | 0.541 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:N/I:P/A:N
|