Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 28/08/2004 Updated: 11/07/2017

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 435

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Multiple cross-site scripting (XSS) vulnerabilities in XOOPS 0.94 and 1.0 allow remote malicious users to execute arbitrary web script and HTML via the (1) terme parameter to search.php or (2) letter parameter to letter.php.

Vulnerable Product	Search on Vulmon	Subscribe to Product

source: wwwsecurityfocuscom/bid/11064/info Reportedly the XOOPS Dictionary Module by Nagle is affected by multiple cross-site scripting vulnerabilities This issue is due to a failure of the application to properly sanitize user-supplied URI input As a result of this issue and attacker can execute arbitrary script code in the browser of ...

NVD-CWE-Other http://www.securityfocus.com/bid/11064 http://secunia.com/advisories/12424 http://cyruxnet.org/modulo_dic_xoops.htm http://www.osvdb.org/9393 http://www.osvdb.org/9394 http://marc.info/?l=bugtraq&m=109394077209963&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/17154 https://exchange.xforce.ibmcloud.com/vulnerabilities/17152 https://nvd.nist.gov https://www.exploit-db.com/exploits/24415/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2004-1640

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect