Lucene search
HistoryDec 31, 2004 - 5:00 a.m.
CVE-2004-2162
xss
tutos
web security
vulnerability
remote attack
5.6 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.008 Low
EPSS
Percentile
81.8%
Multiple cross-site scripting (XSS) vulnerabilities in TUTOS 1.1 allow remote attackers to inject arbitrary web script or HTML via (1) the search field of the Address Module or (2) the t parameter to app_new.php.
| CPE | Name | Operator | Version |
|---|---|---|---|
| tutos:tutos | tutos | eq | 1.1_2004-04-14 |
Related
openvas
openvas
Debian Security Advisory DSA 980-1 (tutos)
2008-01-17 00:00:00
osv
osv
tutos - several
2006-02-22 00:00:00
nessus
nessus
Debian DSA-980-1 : tutos - several vulnerabilities
2006-10-14 00:00:00
TUTOS < 1.2 Multiple Input Validation Vulnerabilities
2004-09-21 00:00:00
debian
debian
[SECURITY] [DSA 980-1] New tutos packages fix multiple vulnerabilities
2006-02-22 14:40:41
[SECURITY] [DSA 980-1] New tutos package fixes several vulnerabilities
2006-03-02 06:49:44
[SECURITY] [DSA 980-1] New tutos package fixes several vulnerabilities
2006-03-02 06:49:44
5.6 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.008 Low
EPSS
Percentile
81.8%
Related for CVE-2004-2162