CVE-2004-2651 Information

Feb 14, 2021 cve

Description

Multiple cross-site scripting (XSS) vulnerabilities in YaCy before 0.32 allow remote attackers to inject arbitrary web script or HTML via the (1) urlmaskfilter parameter to index.html or the (2) page parameter to Wiki.html.

Reference

http://archives.neohapsis.com/archives/bugtraq/2004-12/0413.html http://securitytracker.com/id?1012686 http://www.osvdb.org/12629 http://www.osvdb.org/12630 http://www.securityfocus.com/bid/12104 http://www.yacy.net/yacy/News.html https://exchange.xforce.ibmcloud.com/vulnerabilities/18688 https://exchange.xforce.ibmcloud.com/vulnerabilities/18690 Multiple cross-site scripting (XSS) vulnerabilities in YaCy before 0.32 allow remote attackers to inject arbitrary web script or HTML via the (1) urlmaskfilter parameter to index.html or the (2) page parameter to Wiki.html.

Share on: