CVE-2004-2497

2005-10-2504:00:00

mitre

www.cve.org

5.7 Medium

AI Score

Confidence

High

0.012 Low

EPSS

Percentile

85.5%

JSON

Cross-site scripting (XSS) vulnerability in the error handler in Hitachi Web Page Generator and Web Page Generator Enterprise 4.01 and earlier, when using the default error template and debug mode is set to ON, allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors.

References

secunia.com/advisories/12150

www.hitachi-support.com/security_e/vuls_e/HS04-003_e/index-e.html

www.osvdb.org/8264

www.securityfocus.com/bid/10818

exchange.xforce.ibmcloud.com/vulnerabilities/16822