Lucene search

[email protected]CVE-2003-1546

HistoryMar 06, 2008 - 1:00 a.m.

CVE-2003-1546

2008-03-0601:00:00

CWE-79

[email protected]

web.nvd.nist.gov

cve-2003-1546

cross-site scripting

xss

gbook.php

filebased guestbook 1.1.3

security vulnerability

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

67.9%

JSON

Cross-site scripting (XSS) vulnerability in gbook.php in Filebased guestbook 1.1.3 allows remote attackers to inject arbitrary web script or HTML via the comment section.

Affected configurations

NVD

Node

filebasedguestbookMatch1.1.3

CPENameOperatorVersion
filebased:guestbookfilebased guestbookeq1.1.3

CPE	Name	Operator	Version
filebased:guestbook	filebased guestbook	eq	1.1.3

References

archives.neohapsis.com/archives/bugtraq/2003-03/0219.html

secunia.com/advisories/8317

www.securityfocus.com/bid/7104

www.securitytracker.com/id?1006289

exchange.xforce.ibmcloud.com/vulnerabilities/11540

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

67.9%

JSON

Related for CVE-2003-1546

nvd1 cvelist1