CVE-2004-2522 Information

Description

Cross-site scripting (XSS) vulnerability in web.tmpl in Gattaca Server 2003 1.1.10.0 allows remote attackers to inject arbitrary web script or HTML via the (1) template or (2) language parameter.

Reference

http://members.lycos.co.uk/r34ct/main/Gattaca20Server202003.txt http://secunia.com/advisories/12071 http://securitytracker.com/id?1010703 http://www.gattaca-server.com/cgi-bin/yabb/YaBB.pl?board=gattaca_discussion;action=display;num=1091194176;start=00 http://www.osvdb.org/7927 http://www.securityfocus.com/bid/10731 https://exchange.xforce.ibmcloud.com/vulnerabilities/16701