CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2004-1196

Cross-site scripting (XSS) vulnerability in inmail.pl in Insite Inmail allows remote attackers to inject arbitrary web script or HTML via the acao parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.047

EPSS Ranking 89.0%

CVSS Severity

CVSS v2 Score 6.8

References

http://marc.info/?l=bugtraq&m=110140029419018&w=2
http://secunia.com/advisories/13188/
http://www.securityfocus.com/bid/11758
https://exchange.xforce.ibmcloud.com/vulnerabilities/18268
http://marc.info/?l=bugtraq&m=110140029419018&w=2
http://secunia.com/advisories/13188/
http://www.securityfocus.com/bid/11758
https://exchange.xforce.ibmcloud.com/vulnerabilities/18268

Products affected by CVE-2004-1196

Insite » Inmail » Version: Any

cpe:2.3:a:insite:inmail:*
Insite » Inshop » Version: Any

cpe:2.3:a:insite:inshop:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-1196

Products

Pricing

Contact Us