2 matches found
CVE-2004-1655
CVE-2004-1655 affects phpWebsite (version 0.9.3-4 and earlier). The vulnerability is a cross-site scripting (XSS) issue that allows remote attackers to inject arbitrary script or HTML via the CM_pid parameter in the comments module or via the subject or message fields in the notes module. The pro...
CVE-2004-1655
Cross-site scripting XSS vulnerability in phpWebsite 0.9.3-4 and earlier allows remote attackers to inject arbitrary web script or HTML via the 1 CMpid parameter in the comments module or 2 the subject or message fields in the notes module...