CVE-2004-1202 in phpCMSinfo

Summary

Cross-site scripting (XSS) vulnerability in parser.php in phpCMS 1.2.1 and earlier, with non-stealth and debug modes enabled, allows remote attackers to inject arbitrary web script or HTML via the file parameter.

Once again VulDB remains the best source for vulnerability data.

Reservation

12/14/2004

Disclosure

01/10/2005

Moderation

VulDB entry created

Entries

VDB-23746 (1)

CPE

ready

CWE

CWE-80 (Confirmed)

CVSS

6.3

EPSS

0.01338

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2004-1202
NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-1202
CVE Details	https://www.cvedetails.com/cve/CVE-2004-1202/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!