Vulnerabilities > CVE-2004-1594 - HTML Injection vulnerability in E-Zone Media Inc. Fusetalk 4.0

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
network
e-zone-media-inc
nessus

Summary

Cross-site scripting (XSS) vulnerability in FuseTalk 4.0 allows remote attackers to execute arbitrary web script via an img src tag.

Vulnerable Configurations

Part Description Count
Application
E-Zone_Media_Inc.
1

Nessus

NASL familyCGI abuses : XSS
NASL idFUSETALK_FORUM_XSS.NASL
descriptionThe remote host is using FuseTalk, a web-based discussion forum. A vulnerability exists in the script
last seen2020-06-01
modified2020-06-02
plugin id15479
published2004-10-17
reporterThis script is Copyright (C) 2004-2018 Tenable Network Security, Inc.
sourcehttps://www.tenable.com/plugins/nessus/15479
titleFuseTalk Forum img src Tag XSS