CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2004-2098

Cross-site scripting (XSS) vulnerability in the banner engine (TBE) 5.0 allows remote attackers to execute arbitrary script as other users via the HTML banner view/preview capability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 58.7%

CVSS Severity

CVSS v2 Score 4.3

References

http://marc.info/?l=bugtraq&m=107479071808330&w=2
http://www.securityfocus.com/bid/9472
https://exchange.xforce.ibmcloud.com/vulnerabilities/14911
http://marc.info/?l=bugtraq&m=107479071808330&w=2
http://www.securityfocus.com/bid/9472
https://exchange.xforce.ibmcloud.com/vulnerabilities/14911

Products affected by CVE-2004-2098

Native Solutions » Tbe Banner Engine » Version: 4.0

cpe:2.3:a:native_solutions:tbe_banner_engine:4.0
Native Solutions » Tbe Banner Engine » Version: 5.0

cpe:2.3:a:native_solutions:tbe_banner_engine:5.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-2098

Products

Pricing

Contact Us