CVE-2004-0305

2004-11-23T05:00:00
ID CVE-2004-0305
Type cve
Reporter cve@mitre.org
Modified 2017-07-11T01:30:00

Description

Cross-site scripting (XSS) vulnerability in error.asp in WebCortex WebStores 2000 6.0 allows remote attackers to execute arbitrary script as other users and steal session IDs via the Message_id parameter.