Vulnerabilities > CVE-2004-1794 - HTML Injection vulnerability in VCard4J Toolkit
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE network
vcard4j
Summary
Cross-site scripting (XSS) vulnerability in the VCard4J Toolkit allows remote attackers to inject arbitrary web script or HTML via the NICKNAME tag in a vCard.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 7 |