Vulnerabilities > CVE-2004-1844
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN exploit available
Summary
Cross-site scripting (XSS) vulnerability in Member Management System 2.1 allows remote attackers to inject arbitrary web script or HTML via (1) the err parameter to error.asp or (2) register.asp.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
description Expinion.net Member Management System 2.1 register.asp err Parameter XSS. CVE-2004-1844. Webapps exploit for asp platform id EDB-ID:23854 last seen 2016-02-02 modified 2004-03-20 published 2004-03-20 reporter Manuel Lopez source https://www.exploit-db.com/download/23854/ title Expinion.net Member Management System 2.1 register.asp err Parameter XSS description Expinion.net Member Management System 2.1 error.asp err Parameter XSS. CVE-2004-1844. Webapps exploit for asp platform id EDB-ID:23853 last seen 2016-02-02 modified 2004-03-20 published 2004-03-20 reporter Manuel Lopez source https://www.exploit-db.com/download/23853/ title Expinion.net Member Management System 2.1 error.asp err Parameter XSS
References
- http://marc.info/?l=bugtraq&m=107999697625786&w=2
- http://marc.info/?l=bugtraq&m=107999697625786&w=2
- http://secunia.com/advisories/11179
- http://secunia.com/advisories/11179
- http://securitytracker.com/id?1009508
- http://securitytracker.com/id?1009508
- http://www.securityfocus.com/bid/9932
- http://www.securityfocus.com/bid/9932
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15552
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15552