3 matches found
CVE-2004-0663
Cross-site scripting XSS vulnerability in modules.php in PowerPortal 1.x allows remote attackers to inject arbitrary script or HTML via the 1 id parameter to the a privatemessages module; 2 search parameter to the b links and c content modules; and 3 files parameter to the gallery module...
CVE-2004-0663
Cross-site scripting XSS vulnerability in modules.php in PowerPortal 1.x allows remote attackers to inject arbitrary script or HTML via the 1 id parameter to the a privatemessages module; 2 search parameter to the b links and c content modules; and 3 files parameter to the gallery module...
CVE-2004-0663
CVE-2004-0663 affects PowerPortal 1.x, where a cross-site scripting (XSS) flaw exists in modules.php. The vulnerability enables injection of arbitrary script or HTML via (1) id in the private_messages module, (2) search in the links and content modules, and (3) files in the gallery module. These ...