Gadu-Gadu: >> Gadu-Gadu Instant Messenger >> 6.0_build155 Security Vulnerabilities
Cross-site scripting (XSS) vulnerability in Gadu-Gadu build 155 and earlier allows remote attackers to inject arbitrary web script via a URL, which is echoed in a popup window that displays a parsing error message, a different vulnerability than CVE-2004-1229.
CVSS Score
4.3
EPSS Score
0.005
Published
2004-12-31
Gadu-Gadu build 155 and earlier allows remote attackers to cause a denial of service (infinite loop) via a message that contains an image whose filename does not start with restricted characters.
CVSS Score
2.6
EPSS Score
0.007
Published
2004-12-31