Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-2064

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2004-2064
Last Modified 05 Sep 2008 04:43:06
Published 29 Jul 2004 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2004-2064

Summary

Cross-site scripting (XSS) vulnerability in lostBook 1.1 and earlier allows remote attackers to inject arbitrary web script via the (1) Email or (2) Website fields.

Vulnerable Systems

Application

  • Verylost Lostbook 1.1


References

XF - lostbook-email-website-xss(16835)

BID - 10825

OSVDB - 8271

SECTRACK - 1010812

SECUNIA - 12190

BUGTRAQ - 20040729 lostBook v1.1 Javascript Execution


Last Updated: 27 May 2016 10:39:18