1. CVE-Search
  2. CVE-2003-0504
ID CVE-2003-0504
Summary Multiple cross-site scripting (XSS) vulnerabilities in Phpgroupware 0.9.14.003 (aka webdistro) allow remote attackers to insert arbitrary HTML or web script, as demonstrated with a request to index.php in the addressbook module.
References
Vulnerable Configurations
  • cpe:2.3:a:phpgroupware:phpgroupware:0.9.14.003:*:*:*:*:*:*:*
    cpe:2.3:a:phpgroupware:phpgroupware:0.9.14.003:*:*:*:*:*:*:*
CVSS
Base: 4.3 (as of 18-10-2016 - 02:34)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE PARTIAL NONE
cvss-vector via4 AV:N/AC:M/Au:N/C:N/I:P/A:N
refmap via4
bugtraq 20030702 [KSA-003] Cross Site Scripting Vulnerability in Phpgroupware
conectiva CLA-2003:697
debian DSA-365
mandrake MDKSA-2003:077
misc http://www.security-corporation.com/articles-20030702-005.html
Last major update 18-10-2016 - 02:34
Published 07-08-2003 - 04:00
Last modified 18-10-2016 - 02:34
Back to Top