Lucene search
MitreCVE-2004-2038HistoryMay 10, 2005 - 4:00 a.m.
CVE-2004-2038
2005-05-1004:00:00
mitre
web.nvd.nist.gov
24
cve-2004-2038
cross-site scripting
xss
vulnerability
land down under
ldu
functions.php
header.php
auth.inc.php
nvd
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.9
Confidence
High
EPSS
0.007
Percentile
81.0%
Cross-site scripting (XSS) vulnerability in Land Down Under (LDU) before LDU 700 allows remote attackers to inject arbitrary web script or HTML via a BBcode img tag in (1) functions.php, (2) header.php or (3) auth.inc.php.
Affected configurations
Node
neocromeland_down_underRange≤700.03
ORneocromeland_down_underMatch601
ORneocromeland_down_underMatch602
ORneocromeland_down_underMatch700.01
ORneocromeland_down_underMatch700.02
| Vendor | Product | Version | CPE |
|---|---|---|---|
| neocrome | land_down_under | * | cpe:2.3:a:neocrome:land_down_under:*:*:*:*:*:*:*:* |
| neocrome | land_down_under | 601 | cpe:2.3:a:neocrome:land_down_under:601:*:*:*:*:*:*:* |
| neocrome | land_down_under | 602 | cpe:2.3:a:neocrome:land_down_under:602:*:*:*:*:*:*:* |
| neocrome | land_down_under | 700.01 | cpe:2.3:a:neocrome:land_down_under:700.01:*:*:*:*:*:*:* |
| neocrome | land_down_under | 700.02 | cpe:2.3:a:neocrome:land_down_under:700.02:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2004-2038
2005-05-10 04:00:00
exploitdb
exploitdb
Land Down Under - BBCode HTML Injection
2004-05-29 00:00:00
nvd
nvd
CVE-2004-2038
2004-05-29 04:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.9
Confidence
High
EPSS
0.007
Percentile
81.0%
Related for CVE-2004-2038