Vulnerabilities > CVE-2004-1499 - Unspecified vulnerability in Webhost Automation Helm Control Panel
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN webhost-automation
exploit available
Summary
Cross-site scripting (XSS) vulnerability in the compose message form in HELM 3.1.19 and earlier allows remote attackers to execute arbitrary web script or HTML via the Subject field.
Vulnerable Configurations
Exploit-Db
| description | WebHost Automation Helm Control Panel 3.1.x Multiple Input Validation Vulnerabilities. CVE-2004-1499. Webapps exploit for asp platform |
| id | EDB-ID:24717 |
| last seen | 2016-02-02 |
| modified | 2004-11-02 |
| published | 2004-11-02 |
| reporter | Behrang Fouladi |
| source | https://www.exploit-db.com/download/24717/ |
| title | WebHost Automation Helm Control Panel 3.1.x - Multiple Input Validation Vulnerabilities |
References
- http://marc.info/?l=bugtraq&m=109943858026542&w=2
- http://marc.info/?l=bugtraq&m=109943858026542&w=2
- http://secunia.com/advisories/13079
- http://secunia.com/advisories/13079
- http://www.hat-squad.com/en/000077.html
- http://www.hat-squad.com/en/000077.html
- http://www.securityfocus.com/bid/11586
- http://www.securityfocus.com/bid/11586
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17943
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17943