CVE-2004-0660 in CuteNewsinformazioni

Riassunto

di MITRE

Cross-site scripting (XSS) vulnerability in (1) show_archives.php, (2) show_news.php, and possibly other php files in CuteNews 1.3.1 allows remote attackers to inject arbitrary script or HTML via the id parameter.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

12/07/2004

Divulgazione

06/08/2004

Moderazione

accettato

Voce

Collegare

mostrare

CPE

pronto

CWE

CWE-80 (confermato)

Sfruttamento

Scaricare

CVSS

6.8 (NVD)

EPSS

0.03947

KEV

Attività

molto basso

Settore

Hostingprovider, Lawfirm, ...

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2004-0660
NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-0660
CVE Details	https://www.cvedetails.com/cve/CVE-2004-0660/

◂ Precedente Visione D'ensemble Il prossimo ▸

Might our Artificial Intelligence support you?

Check our Alexa App!