Vulnerabilities > CVE-2004-2355 - HTML Injection vulnerability in Crafty Syntax Live Help Crafty Syntax Live Help 2.7.3
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Cross-site scripting (XSS) vulnerability in Crafty Syntax Live Help (CSLH) before 2.7.4 allows remote attackers to inject arbitrary web script or HTML via the name field of a livehelp or chat session.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | Crafty Syntax Live Help 2.7.3 Multiple HTML Injection Vulnerabilities. CVE-2004-2355. Webapps exploit for php platform |
id | EDB-ID:24169 |
last seen | 2016-02-02 |
modified | 2004-06-04 |
published | 2004-06-04 |
reporter | HNK Technology Solutions |
source | https://www.exploit-db.com/download/24169/ |
title | Crafty Syntax Live Help 2.7.3 - Multiple HTML Injection Vulnerabilities |