CVE-2004-1420

Published: 31/12/2004 Updated: 11/07/2017

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 435

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Multiple cross-site scripting (XSS) vulnerabilities in header.php in WHM AutoPilot 2.4.6.5 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) site_title or (2) http_images parameter.

Vulnerable Product	Search on Vulmon	Subscribe to Product
whm autopilot 2.4.6
whm autopilot 2.4.6.5
whm autopilot 2.4.5

WHMAutoPilot Multiple Vulnerabilities Vendor: Benchmark Designs, LLC Product: WHMAutoPilot Version: <= 2465 Website: wwwwhmautopilotcom/ BID: 12119 CVE: CVE-2004-1420 CVE-2004-1421 CVE-2004-1422 OSVDB: 12693 12694 12695 12696 12697 SECUNIA: 13673 PACKETSTORM: 35559 Description: Started by a webhost looking for more out of a ...

NVD-CWE-Other http://www.gulftech.org/?node=research&article_id=00059-12272004 http://www.whmautopilot.com/forum/lofiversion/index.php/t6785.html http://www.securityfocus.com/bid/12119 http://secunia.com/advisories/13673 http://marc.info/?l=bugtraq&m=110425620105529&w=2 http://marc.info/?l=bugtraq&m=110451997904494&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/18700 https://nvd.nist.gov https://www.exploit-db.com/exploits/43818/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2004-1420

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect