Lucene search
HistoryFeb 26, 2005 - 5:00 a.m.
CVE-2004-1735
cve-2004-1735
cross-site scripting
xss vulnerability
sympa 4.1.x
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.2
Confidence
High
EPSS
0.003
Percentile
69.1%
Cross-site scripting (XSS) vulnerability in the create list option in Sympa 4.1.x and earlier allows remote authenticated users to inject arbitrary web script or HTML via the description field.
Affected configurations
Node
sympasympaMatch4.0
ORsympasympaMatch4.1
ORsympasympaMatch4.1.1
ORsympasympaMatch4.1.2
Related
nessus
nessus
Sympa New List Creation Description Field XSS
2004-08-22 00:00:00
cvelist
cvelist
CVE-2004-1735
2005-02-26 05:00:00
debiancve
debiancve
CVE-2004-1735
2005-02-26 05:00:00
nvd
nvd
CVE-2004-1735
2004-08-21 04:00:00
openvas
openvas
Sympa New List Cross-Site Scripting Vulnerability
2008-10-24 00:00:00
Sympa < 4.1.3 XSS Vulnerability
2008-10-24 00:00:00
ubuntucve
ubuntucve
CVE-2004-1735
2004-08-21 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.2
Confidence
High
EPSS
0.003
Percentile
69.1%
Related for CVE-2004-1735