Vulnerabilities > CVE-2004-2267
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Cross-site scripting (XSS) vulnerability in Ansel 2.1 and earlier allows remote attackers to inject arbitrary HTML or web script via the album name.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 7 |
References
- http://secunia.com/advisories/12856
- http://secunia.com/advisories/12856
- http://secunia.com/secunia_research/2004-17/advisory/
- http://secunia.com/secunia_research/2004-17/advisory/
- http://securitytracker.com/id?1012434
- http://securitytracker.com/id?1012434
- http://www.osvdb.org/12237
- http://www.osvdb.org/12237
- http://www.securityfocus.com/bid/11824
- http://www.securityfocus.com/bid/11824
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18374
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18374