2 matches found
CVE-2004-0314
Cross-site scripting XSS vulnerability in done.jsp in WebzEdit 1.9 and earlier allows remote attackers to execute arbitrary script as other users via the message parameter...
CVE-2004-0314
The CVE-2004-0314 entry describes an XSS flaw in WebzEdit up to version 1.9, exploitable via the message parameter in done.jsp. The underlying issue enables remote attackers to execute arbitrary script in the context of other users, with the impact limited to partial integrity and no confidential...