Vulnerability Database

289,871

Total vulnerabilities in the database

CVE-2004-1318

Cross-site scripting (XSS) vulnerability in namazu.cgi for Namazu 2.0.13 and earlier allows remote attackers to inject arbitrary HTML and web script via a query that starts with a tab ("%09") character, which prevents the rest of the query from being properly sanitized.

  • Published: Jan 6, 2005
  • Updated: Apr 13, 2023
  • CVE: CVE-2004-1318
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 4.3
  • AV:N/AC:M/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Software From Fixed in
namazu / namazu 2.0.7 2.0.7.x
namazu / namazu 2.0.13 2.0.13.x
namazu / namazu 2.0.8 2.0.8.x