Published: 31/12/2004 Updated: 11/07/2017

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 440

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in AzDGDatingLite 2.1.1 allows remote malicious users to inject arbitrary web script or HTML via the (1) l parameter (aka language variable) to index.php or (2) id parameter to view.php.

Vulnerable Product	Search on Vulmon	Subscribe to Product
azerbaijan development group azdgdating 2.1.1

source: wwwsecurityfocuscom/bid/10084/info Multiple cross-site scripting vulnerabilities have been reported in AzDGDatingLite These issues may be exploited by enticing a victim user to visit a malicious link that includes hostile HTML and script code Exploitation could facilitate theft of cookie-based authentication credentials or othe ...

source: wwwsecurityfocuscom/bid/10084/info Multiple cross-site scripting vulnerabilities have been reported in AzDGDatingLite These issues may be exploited by enticing a victim user to visit a malicious link that includes hostile HTML and script code Exploitation could facilitate theft of cookie-based authentication credentials or ot ...

NVD-CWE-Other http://www.securityfocus.com/bid/10084 http://secunia.com/advisories/11326 http://www.osvdb.org/5018 http://www.osvdb.org/5019 http://marc.info/?l=bugtraq&m=108144342317973&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/15796 https://nvd.nist.gov https://www.exploit-db.com/exploits/23934/

CVE-2004-1911

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect