Vulnerabilities > CVE-2004-1911 - Unspecified vulnerability in Azerbaijan Development Group Azdgdating 2.1.1
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN azerbaijan-development-group
exploit available
Summary
Cross-site scripting (XSS) vulnerability in AzDGDatingLite 2.1.1 allows remote attackers to inject arbitrary web script or HTML via the (1) l parameter (aka language variable) to index.php or (2) id parameter to view.php.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
description AzDGDatingLite 2.1.1 view.php id Parameter XSS. CVE-2004-1911. Webapps exploit for php platform id EDB-ID:23935 last seen 2016-02-02 modified 2004-04-07 published 2004-04-07 reporter Janek Vind source https://www.exploit-db.com/download/23935/ title AzDGDatingLite 2.1.1 view.php id Parameter XSS description AzDGDatingLite 2.1.1 index.php language Parameter XSS. CVE-2004-1911 . Webapps exploit for php platform id EDB-ID:23934 last seen 2016-02-02 modified 2004-04-07 published 2004-04-07 reporter Janek Vind source https://www.exploit-db.com/download/23934/ title AzDGDatingLite 2.1.1 index.php language Parameter XSS
References
- http://marc.info/?l=bugtraq&m=108144342317973&w=2
- http://marc.info/?l=bugtraq&m=108144342317973&w=2
- http://secunia.com/advisories/11326
- http://secunia.com/advisories/11326
- http://www.osvdb.org/5018
- http://www.osvdb.org/5018
- http://www.osvdb.org/5019
- http://www.osvdb.org/5019
- http://www.securityfocus.com/bid/10084
- http://www.securityfocus.com/bid/10084
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15796
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15796