HomePentest-Tools.com Logo

CuteNews index.php XSS CVE-2004-1659

Severity
Not available
CVSSv3 Score
Not available
Vulnerability description

The version of CuteNews installed on the remote host is vulnerable to a cross-site-scripting (XSS) attack.

Risk description

An attacker, exploiting this flaw, would need to be able to coerce a user to browse to a purposefully malicious URI. Upon successful exploitation, the attacker would be able to run code within the web-browser in the security context of the CuteNews server.

Recommendation

Upgrade to the latest version.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Sep 2, 2004
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available