Cross-site scripting (XSS) vulnerability in Xedus 1.0 allows remote attackers to execute arbitrary web script or HTML via the (1) username parameter to test.x, (2) username parameter to TestServer.x, or (3) param parameter to testgetrequest.x.
References
Link | Resource |
---|---|
http://marc.info/?l=bugtraq&m=109394018411394&w=2 | |
http://secunia.com/advisories/12418 | Exploit Vendor Advisory |
http://www.gulftech.org/?node=research&article_id=00047-08302004 | |
http://www.securityfocus.com/bid/11071 | Exploit Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/17166 |
Configurations
History
No history.
Information
Published : 2004-08-30 04:00
Updated : 2024-02-28 10:24
NVD link : CVE-2004-1645
Mitre link : CVE-2004-1645
CVE.ORG link : CVE-2004-1645
JSON object : View
Products Affected
jerod_moemeka
- xedus
CWE