CVE-2004-2098 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2004-2098

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Cross-site scripting (XSS) vulnerability in the banner engine (TBE) 5.0 allows remote attackers to execute arbitrary script as other users via the HTML banner view/preview capability.

Affected Software

Name	Vendor	Start Version	End Version
Tbe_banner_engine	Native_solutions	4.0 (including)	4.0 (including)
Tbe_banner_engine	Native_solutions	5.0 (including)	5.0 (including)

References

http://marc.info/?l=bugtraq\u0026m=107479071808330\u0026w=2
http://www.securityfocus.com/bid/9472
https://exchange.xforce.ibmcloud.com/vulnerabilities/14911
http://marc.info/?l=bugtraq\u0026m=107479071808330\u0026w=2
http://www.securityfocus.com/bid/9472
https://exchange.xforce.ibmcloud.com/vulnerabilities/14911