Vulnerabilities > CVE-2004-2508 - Cross-Site Scripting vulnerability in Linksys Wvc11B 2.10

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
network
linksys
exploit available

Summary

Cross-site scripting (XSS) vulnerability in main.cgi in Linksys WVC11B Wireless-B Internet Video Camera allows remote attackers to inject arbitrary web script or HTML via the next_file parameter.

Vulnerable Configurations

Part Description Count
Hardware
Linksys
1

Exploit-Db

descriptionLinksys Web Camera Software 2.10 Next_file Parameter Cross-Site Scripting Vulnerability. CVE-2004-2508. Webapps exploit for cgi platform
idEDB-ID:24197
last seen2016-02-02
modified2004-06-14
published2004-06-14
reporterscriptX
sourcehttps://www.exploit-db.com/download/24197/
titleLinksys Web Camera Software 2.10 Next_file Parameter Cross-Site Scripting Vulnerability