Vulnerabilities > CVE-2004-0305 - Cross-Site Scripting vulnerability in Webcortex Webstores 2000 6.0
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Cross-site scripting (XSS) vulnerability in error.asp in WebCortex WebStores 2000 6.0 allows remote attackers to execute arbitrary script as other users and steal session IDs via the Message_id parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | WebCortex WebStores2000 Error.ASP Cross-Site Scripting Vulnerability. CVE-2004-0305. Webapps exploit for asp platform |
id | EDB-ID:23729 |
last seen | 2016-02-02 |
modified | 2004-02-18 |
published | 2004-02-18 |
reporter | Nick Gudov |
source | https://www.exploit-db.com/download/23729/ |
title | WebCortex WebStores2000 Error.ASP Cross-Site Scripting Vulnerability |