Vulnerabilities > CVE-2004-2604 - Cross-Site Scripting vulnerability in PHProxy 0.1/0.2/0.3

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

phproxy

NVD

Published: 2004-12-31

Updated: 2017-07-11

Summary

Cross-site scripting (XSS) vulnerability in index.php in PHProxy allows remote attackers to inject arbitrary web script or HTML via the error parameter.

Vulnerable Configurations

Part	Description	Count
Application	Phproxy Phproxy Phproxy 0.1 Phproxy Phproxy 0.2 Phproxy Phproxy 0.3	3

References

http://securitytracker.com/id?1012702
http://www.osvdb.org/12627
http://www.securityfocus.com/bid/12115
https://exchange.xforce.ibmcloud.com/vulnerabilities/18697