Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-2246

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2004-2246
Last Modified 05 Sep 2008 04:43:36
Published 31 Dec 2004 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2004-2246

Summary

Cross-site scripting (XSS) vulnerability in Goollery before 0.04b allows remote attackers to inject arbitrary HTML or web script via the conversation_id parameter to viewpic.php.

Vulnerable Systems

Application

  • Goollery 0.3


References

OSVDB - 11624

MISC - http://www.osvdb.org/ref/11/11624-goollery-viewpic.txt


Last Updated: 27 May 2016 10:39:24