Vulnerability Details CVE-2004-1589
Cross-site scripting (XSS) vulnerability in GoSmart Message Board allows remote attackers to execute inject web script or HTML via the (1) Category parameter to Forum.asp or (2) MainMessageID parameter to ReplyToQuestion.asp.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 60.4%
CVSS Severity
CVSS v2 Score 4.3
References
- http://marc.info/?l=bugtraq&m=109751522823011&w=2
- http://secunia.com/advisories/12790/
- http://www.securityfocus.com/bid/11361
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17679
- http://marc.info/?l=bugtraq&m=109751522823011&w=2
- http://secunia.com/advisories/12790/
- http://www.securityfocus.com/bid/11361
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17679
Products affected by CVE-2004-1589
-
cpe:2.3:a:gosmart:gosmart_message_board:*