Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv2

CVE-2004-0678

Published: 06/08/2004 Updated: 11/07/2017
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
VMScore: 435
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Vulnerability Summary

Cross-site scripting (XSS) in one2planet.infolet.InfoServlet in 12Planet Chat Server 2.9 allows remote malicious users to execute arbitrary script as other users via the page parameter.

Vulnerable Product Search on Vulmon Subscribe to Product

12planet chat server 2.9

Exploits

Exploit DB: 12Planet Chat Server 2.9 - Cross-Site Scripting
source: wwwsecurityfocuscom/bid/10659/info It is reported that 12Planet Chat Server is prone to a cross-site scripting vulnerability This issue is due to a lack of sanitization of user-supplied data The problem presents itself when malicious HTML or script code is passed in a URI argument to one of the servlets in the application A r ...

References

CWE-79http://www.securityfocus.com/bid/10659http://www.autistici.org/fdonato/advisory/12PlanetChatServer2.9-adv.txthttp://marc.info/?l=bugtraq&m=108904648728706&w=2https://exchange.xforce.ibmcloud.com/vulnerabilities/16605https://nvd.nist.govhttps://www.exploit-db.com/exploits/24253/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
spoofCVE-2024-34928CVE-2024-5291deserializationCVE-2024-4471CVE-2024-4956CVE-2024-32002CVE-2024-5227unspecified
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook