Lucene search
MitreCVE-2004-0660HistoryAug 06, 2004 - 4:00 a.m.
CVE-2004-0660
2004-08-0604:00:00
mitre
web.nvd.nist.gov
43
cve
2004
0660
cross-site scripting
xss
cutenews
php files
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
5.9
Confidence
High
EPSS
0.008
Percentile
82.0%
Cross-site scripting (XSS) vulnerability in (1) show_archives.php, (2) show_news.php, and possibly other php files in CuteNews 1.3.1 allows remote attackers to inject arbitrary script or HTML via the id parameter.
Affected configurations
Node
cutephpcutenewsMatch0.88
ORcutephpcutenewsMatch1.3
ORcutephpcutenewsMatch1.3.1
Related
openvas
openvas
CuteNews < 1.3.2 XSS Vulnerability
2005-11-03 00:00:00
CuteNews 'show_news.php' XSS Vulnerability
2005-11-03 00:00:00
CuteNews show_news.php XSS
2005-11-03 00:00:00
exploitdb
exploitdb
CuteNews 0.88/1.3 - 'example1.php' Cross-Site Scripting
2004-06-28 00:00:00
CuteNews 0.88/1.3 - 'example2.php' Cross-Site Scripting
2004-06-28 00:00:00
CuteNews 0.88/1.3 - 'show_archives.php' Cross-Site Scripting
2004-06-28 00:00:00
nvd
nvd
CVE-2004-0660
2004-08-06 04:00:00
cvelist
cvelist
CVE-2004-0660
2004-07-13 04:00:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
5.9
Confidence
High
EPSS
0.008
Percentile
82.0%
Related for CVE-2004-0660