Cross-site scripting (XSS) vulnerability in Gadu-Gadu build 155 and earlier allows remote attackers to inject arbitrary web script via a URL, which is echoed in a popup window that displays a parsing error message, a different vulnerability than CVE-2004-1229.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Gadu-gadu_instant_messenger | Gadu-gadu | 6.0_build149 (including) | 6.0_build149 (including) |
Gadu-gadu_instant_messenger | Gadu-gadu | 6.0_build150 (including) | 6.0_build150 (including) |
Gadu-gadu_instant_messenger | Gadu-gadu | 6.0_build151 (including) | 6.0_build151 (including) |
Gadu-gadu_instant_messenger | Gadu-gadu | 6.0_build152 (including) | 6.0_build152 (including) |
Gadu-gadu_instant_messenger | Gadu-gadu | 6.0_build153 (including) | 6.0_build153 (including) |
Gadu-gadu_instant_messenger | Gadu-gadu | 6.0_build154 (including) | 6.0_build154 (including) |
Gadu-gadu_instant_messenger | Gadu-gadu | 6.0_build155 (including) | 6.0_build155 (including) |