Lucene search
MitreCVE-2004-2211HistoryJul 10, 2005 - 4:00 a.m.
CVE-2004-2211
2005-07-1004:00:00
mitre
web.nvd.nist.gov
26
cve-2004-2211
cross-site scripting
xss
alivesites forums 2.0
remote code injection
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.9
Confidence
High
EPSS
0.007
Percentile
80.4%
Cross-site scripting (XSS) vulnerability in AliveSites Forums 2.0 allows remote attackers to inject arbitrary web script or HTML via the (1) forum_id, (2) method, or (3) forum_title parameters to post.asp, (4) the forum_title parameter to forum.asp, or (5) the id parameter to post.asp.
Affected configurations
Node
alivesitesalivesites_forumMatch2.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| alivesites | alivesites_forum | 2.0 | cpe:2.3:a:alivesites:alivesites_forum:2.0:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2004-2211
2005-07-10 04:00:00
CVE-2005-4256
2005-12-15 11:00:00
nvd
nvd
CVE-2004-2211
2004-12-31 05:00:00
CVE-2005-4256
2005-12-15 11:03:00
cve
cve
CVE-2005-4256
2005-12-15 11:03:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.9
Confidence
High
EPSS
0.007
Percentile
80.4%
Related for CVE-2004-2211