Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbJeiArEDB-ID:23824
HistoryMar 16, 2004 - 12:00 a.m.

Mambo Open Source 4.5 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities

2004-03-1600:00:00
JeiAr
www.exploit-db.com
24

AI Score

7.4

Confidence

Low

JSON
source: https://www.securityfocus.com/bid/9890/info

It has been reported that the Mambo 'index.php' script is prone to a cross-site scripting vulnerability. This issue is due to a failure of the application to properly validate user supplied URI input. This issue could permit a remote attacker to create a malicious link to the vulnerable application that includes hostile HTML and script code. If this link were followed, the hostile code may be rendered in the web browser of the victim user.

http://www.example.com/index.php?return=[XSS]

Related

nvd 1
openvas 2
cvelist 1
cve 1
nessus 1
nvd
nvd
CVE-2004-1825
2004-03-16 05:00:00
openvas
openvas
Mambo Site Server index.php mos_change_template XSS
2005-11-03 00:00:00
Mambo Site Server index.php mos_change_template XSS
2005-11-03 00:00:00
cvelist
cvelist
CVE-2004-1825
2005-05-10 04:00:00
cve
cve
CVE-2004-1825
2005-05-10 04:00:00
nessus
nessus
Mambo Site Server mos_change_template XSS
2005-02-07 00:00:00

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:23824
nvd1openvas2cvelist1cve1nessus1