CVE-2004-2138 in Mysqlguestinfo

Summary

Cross-site scripting (XSS) vulnerability in AWSguest.php in AllWebScripts MySQLGuest allows remote attackers to inject arbitrary HTML and PHP code via the (1) Name, (2) Email, (3) Homepage or (4) Comments field.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

06/30/2005

Disclosure

12/31/2004

Moderation

VulDB entry created

Entries

VDB-23051 (1)

CPE

ready

CWE

CWE-80 (Confirmed)

CVSS

6.3

EPSS

0.01209

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2004-2138
NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-2138
CVE Details	https://www.cvedetails.com/cve/CVE-2004-2138/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!