Vulnerabilities > CVE-2004-1844 - Cross-Site Scripting vulnerability in Expinion.net Member Management System
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Cross-site scripting (XSS) vulnerability in Member Management System 2.1 allows remote attackers to inject arbitrary web script or HTML via (1) the err parameter to error.asp or (2) register.asp.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description Expinion.net Member Management System 2.1 register.asp err Parameter XSS. CVE-2004-1844. Webapps exploit for asp platform id EDB-ID:23854 last seen 2016-02-02 modified 2004-03-20 published 2004-03-20 reporter Manuel Lopez source https://www.exploit-db.com/download/23854/ title Expinion.net Member Management System 2.1 register.asp err Parameter XSS description Expinion.net Member Management System 2.1 error.asp err Parameter XSS. CVE-2004-1844. Webapps exploit for asp platform id EDB-ID:23853 last seen 2016-02-02 modified 2004-03-20 published 2004-03-20 reporter Manuel Lopez source https://www.exploit-db.com/download/23853/ title Expinion.net Member Management System 2.1 error.asp err Parameter XSS