Vulnerabilities > CVE-2004-1499 - Input Validation vulnerability in WebHost Automation Helm Control Panel
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Cross-site scripting (XSS) vulnerability in the compose message form in HELM 3.1.19 and earlier allows remote attackers to execute arbitrary web script or HTML via the Subject field.
Vulnerable Configurations
Exploit-Db
description | WebHost Automation Helm Control Panel 3.1.x Multiple Input Validation Vulnerabilities. CVE-2004-1499. Webapps exploit for asp platform |
id | EDB-ID:24717 |
last seen | 2016-02-02 |
modified | 2004-11-02 |
published | 2004-11-02 |
reporter | Behrang Fouladi |
source | https://www.exploit-db.com/download/24717/ |
title | WebHost Automation Helm Control Panel 3.1.x - Multiple Input Validation Vulnerabilities |