CVE-2004-2564 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2004-2564

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Multiple cross-site scripting (XSS) vulnerabilities in Sambar Server 6.1 Beta 2 on Windows, and possibly other versions on Linux, allow remote attackers to inject arbitrary web script or HTML via (1) the show parameter in show.asp and (2) the title parameter in showperf.asp.

Affected Software

Name	Vendor	Start Version	End Version
Sambar_server	Sambar	6.1-beta2 (including)	6.1-beta2 (including)

References

http://secunia.com/advisories/11748
http://securitytracker.com/id?1010353
http://www.oliverkarow.de/research/sambar.txt
http://www.osvdb.org/6583
http://www.osvdb.org/6584
http://www.securityfocus.com/bid/10444
https://exchange.xforce.ibmcloud.com/vulnerabilities/16286
http://secunia.com/advisories/11748
http://securitytracker.com/id?1010353
http://www.oliverkarow.de/research/sambar.txt
http://www.osvdb.org/6583
http://www.osvdb.org/6584
http://www.securityfocus.com/bid/10444
https://exchange.xforce.ibmcloud.com/vulnerabilities/16286