2 matches found
CVE-2004-2735
CVE-2004-2735 describes a Cross-site scripting (XSS) vulnerability affecting P4DB 2.01 and earlier. The issue allows remote attackers to inject arbitrary web script or HTML by supplying crafted input through a long list of parameters across multiple CGI scripts (e.g., SetPreferences.cgi, branchVi...
CVE-2004-2735
Cross-site scripting XSS vulnerability in P4DB 2.01 and earlier allows remote attackers to inject arbitrary web script or HTML via 1 SETPREFERENCES parameter in SetPreferences.cgi; 2 BRANCH parameter in branchView.cgi; 3 FSPC and 4 COMPLETE parameters in changeByUsers.cgi; 5 FSPC, 6 LABEL, 7...