Vulnerability Details CVE-2004-0032
Cross-site scripting (XSS) vulnerability in search.php in PHPGEDVIEW 2.61 allows remote attackers to inject arbitrary HTML and web script via the firstname parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.9%
CVSS Severity
CVSS v2 Score 6.8
References
- http://marc.info/?l=bugtraq&m=107340840209453&w=2
- http://secunia.com/advisories/10565
- http://www.osvdb.org/3402
- http://www.securityfocus.com/bid/9369
- https://exchange.xforce.ibmcloud.com/vulnerabilities/14160
- http://marc.info/?l=bugtraq&m=107340840209453&w=2
- http://secunia.com/advisories/10565
- http://www.osvdb.org/3402
- http://www.securityfocus.com/bid/9369
- https://exchange.xforce.ibmcloud.com/vulnerabilities/14160
Products affected by CVE-2004-0032
-
cpe:2.3:a:phpgedview:phpgedview:2.61