CVE-2004-0067
CVE-2004-0067
Multiple cross-site scripting (XSS) vulnerabilities in phpGedView before 2.65 allow remote attackers to inject arbitrary HTML or web script via (1) descendancy.php, (2) index.php, (3) individual.php, (4) login.php, (5) relationship.php, (6) source.php, (7) imageview.php, (8) calendar.php, (9) gedrecord.php, (10) login.php, and (11) gdbi_interface.php. NOTE: some aspects of vector 10 were later reported to affect 4.1.
Productos afectados
n/a · n/aPoCs públicas encontradas — 14
exploitdbwww.exploit-db.com/exploits/24834no verificadoexploitdbwww.exploit-db.com/exploits/24822no verificadoexploitdbwww.exploit-db.com/exploits/24821no verificadoexploitdbwww.exploit-db.com/exploits/24820no verificadoexploitdbwww.exploit-db.com/exploits/24814no verificadoexploitdbwww.exploit-db.com/exploits/24816no verificadoexploitdbwww.exploit-db.com/exploits/24831no verificadoexploitdbwww.exploit-db.com/exploits/24829no verificadoexploitdbwww.exploit-db.com/exploits/24830no verificadoexploitdbwww.exploit-db.com/exploits/24835no verificadoexploitdbwww.exploit-db.com/exploits/24832no verificadoexploitdbwww.exploit-db.com/exploits/24819no verificadoexploitdbwww.exploit-db.com/exploits/24837no verificadoexploitdbwww.exploit-db.com/exploits/24810no verificado⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.
¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
http://marc.info/?l=bugtraq&m=107394912715478&w=2http://secunia.com/advisories/26628http://securitytracker.com/id?1018613https://exchange.xforce.ibmcloud.com/vulnerabilities/14212https://exchange.xforce.ibmcloud.com/vulnerabilities/36285http://www.osvdb.org/3473http://www.osvdb.org/3474http://www.osvdb.org/3475http://www.osvdb.org/3476http://www.osvdb.org/3477http://www.osvdb.org/3478http://www.osvdb.org/3479