Lucene search

K

MitreCVELIST:CVE-2004-2402

HistoryAug 17, 2005 - 4:00 a.m.

CVE-2004-2402

2005-08-1704:00:00

mitre

www.cve.org

1

5.6 Medium

AI Score

Confidence

High

0.012 Low

EPSS

Percentile

85.5%

Cross-site scripting (XSS) vulnerability in YaBB.pl in YaBB 1 GOLD SP 1.3.2 allows remote attackers to inject arbitrary web script or HTML via a hex-encoded to parameter. NOTE: some sources say that the board parameter is affected, but this is incorrect.

References

archives.neohapsis.com/archives/bugtraq/2004-09/0227.html

secunia.com/advisories/12593

www.osvdb.org/10242

www.securityfocus.com/bid/11215

exchange.xforce.ibmcloud.com/vulnerabilities/17452

5.6 Medium

AI Score

Confidence

High

0.012 Low

EPSS

Percentile

85.5%

Related for CVELIST:CVE-2004-2402

nvd1 cve1 nessus1 openvas1