Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2003-0980
HistoryJan 05, 2004 - 5:00 a.m.

CVE-2003-0980

2004-01-0505:00:00
mitre
web.nvd.nist.gov
24
cve-2003-0980
xss
vulnerability
freescripts
visitorbook
remote attackers
html
web script
do parameter
user parameter
reverse dns
quote marks
ampersands

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

6

Confidence

High

EPSS

0.001

Percentile

47.7%

JSON

Cross-site scripting (XSS) vulnerability in FreeScripts VisitorBook LE (visitorbook.pl) allows remote attackers to inject arbitrary HTML or web script via (1) the “do” parameter, (2) via the “user” parameter from a host with a malicious reverse DNS name, (3) via quote marks or ampersands in other parameters.

Affected configurations

Nvd
Node
freescriptsvisitorbookMatchle
VendorProductVersionCPE
freescriptsvisitorbooklecpe:2.3:a:freescripts:visitorbook:le:*:*:*:*:*:*:*

Related

cvelist 1
nvd 1
cvelist
cvelist
CVE-2003-0980
2003-12-11 05:00:00
nvd
nvd
CVE-2003-0980
2004-01-05 05:00:00

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

6

Confidence

High

EPSS

0.001

Percentile

47.7%

JSON
Related for CVE-2003-0980
cvelist1nvd1