Cross-site scripting (XSS) vulnerability in Goollery before 0.04b allows remote attackers to inject arbitrary HTML or web script via the conversation_id parameter to viewpic.php.
References
Link | Resource |
---|---|
http://www.osvdb.org/11624 | Exploit Patch |
http://www.osvdb.org/ref/11/11624-goollery-viewpic.txt | Exploit |
Configurations
History
No history.
Information
Published : 2004-12-31 05:00
Updated : 2024-02-04 16:31
NVD link : CVE-2004-2246
Mitre link : CVE-2004-2246
CVE.ORG link : CVE-2004-2246
JSON object : View
Products Affected
goollery
- goollery
CWE