Serena TeamTrack 6.1.1 allows remote attackers to obtain sensitive information such as user names, versions, and database information, and conduct cross-site scripting (XSS) attacks, via a direct request to tmtrack.dll with modified LoginPage and Template parameters.
References
Configurations
History
No history.
Information
Published : 2004-12-31 05:00
Updated : 2024-02-04 16:52
NVD link : CVE-2004-2563
Mitre link : CVE-2004-2563
CVE.ORG link : CVE-2004-2563
JSON object : View
Products Affected
serena_software
- serena_teamtrack
CWE