Lucene search

[email protected]CVE-2004-2522

HistoryOct 25, 2005 - 4:00 a.m.

CVE-2004-2522

2005-10-2504:00:00

[email protected]

web.nvd.nist.gov

cve-2004-2522

cross-site scripting

xss

gattaca server

web.tmpl

security vulnerability

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6 Medium

AI Score

Confidence

High

0.01 Low

EPSS

Percentile

83.9%

JSON

Cross-site scripting (XSS) vulnerability in web.tmpl in Gattaca Server 2003 1.1.10.0 allows remote attackers to inject arbitrary web script or HTML via the (1) template or (2) language parameter.

Affected configurations

NVD

Node

geeos_teamgattaca_server_2003Match1.1.10.0

CPENameOperatorVersion
geeos_team:gattaca_server_2003geeos team gattaca server 2003eq1.1.10.0

CPE	Name	Operator	Version
geeos_team:gattaca_server_2003	geeos team gattaca server 2003	eq	1.1.10.0

References

members.lycos.co.uk/r34ct/main/Gattaca%20Server%202003.txt

secunia.com/advisories/12071

securitytracker.com/id?1010703

www.gattaca-server.com/cgi-bin/yabb/YaBB.pl?board=gattaca_discussion%3Baction=display%3Bnum=1091194176%3Bstart=0#0

www.osvdb.org/7927

www.securityfocus.com/bid/10731

exchange.xforce.ibmcloud.com/vulnerabilities/16701

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6 Medium

AI Score

Confidence

High

0.01 Low

EPSS

Percentile

83.9%

JSON

Related for CVE-2004-2522

cvelist1 nvd1