Lucene search
Joxean KoretEDB-ID:24617HistorySep 20, 2004 - 12:00 a.m.
TUTOS - 'app_new.php?t' Cross-Site Scripting
2004-09-2000:00:00
Joxean Koret
www.exploit-db.com
17
AI Score
7.4
Confidence
Low
source: https://www.securityfocus.com/bid/11221/info
Tutos is reported prone to multiple remote input-validation vulnerabilities. These issues exist due to insufficient sanitization of user-supplied data and may allow an attacker to carry out cross-site scripting and SQL-injection attacks.
These issue reportedly affect Tutos 1.1.2004-04-14.
http://www.example.com/app_new.php?t=200408240<script>alert(document.cookie)</script>Related
cvelist
cvelist
CVE-2004-2162
2005-07-10 04:00:00
nvd
nvd
CVE-2004-2162
2004-12-31 05:00:00
cve
cve
CVE-2004-2162
2005-07-10 04:00:00
debian
debian
[SECURITY] [DSA 980-1] New tutos packages fix multiple vulnerabilities
2006-02-22 14:40:41
[SECURITY] [DSA 980-1] New tutos package fixes several vulnerabilities
2006-03-02 06:49:44
[SECURITY] [DSA 980-1] New tutos package fixes several vulnerabilities
2006-03-02 06:49:44
openvas
openvas
Debian: Security Advisory (DSA-980-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 980-1 (tutos)
2008-01-17 00:00:00
nessus
nessus
Debian DSA-980-1 : tutos - several vulnerabilities
2006-10-14 00:00:00
TUTOS < 1.2 Multiple Input Validation Vulnerabilities
2004-09-21 00:00:00
osv
osv
tutos - several
2006-02-22 00:00:00