Show plain JSON{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:mnogosearch:mnogosearch:3.1.19:*:*:*:*:*:*:*", "matchCriteriaId": "4E0B5216-258D-4BBA-B913-165CB40778D1", "vulnerable": true}, {"criteria": "cpe:2.3:a:mnogosearch:mnogosearch:3.1.20:*:*:*:*:*:*:*", "matchCriteriaId": "B8634099-098D-4EFE-BC5F-D27ED33B1DFB", "vulnerable": true}, {"criteria": "cpe:2.3:a:mnogosearch:mnogosearch:3.2.10:*:*:*:*:*:*:*", "matchCriteriaId": "3E28A4BE-4345-45E0-954C-A6A38E99C1E8", "vulnerable": true}, {"criteria": "cpe:2.3:a:mnogosearch:mnogosearch:3.2.13:*:*:*:*:*:*:*", "matchCriteriaId": "07F268F1-379F-4462-86EC-F2161249E23F", "vulnerable": true}, {"criteria": "cpe:2.3:a:mnogosearch:mnogosearch:3.2.14:*:*:*:*:*:*:*", "matchCriteriaId": "630B6DAB-787C-49E7-AD48-3CF7AB372541", "vulnerable": true}, {"criteria": "cpe:2.3:a:mnogosearch:mnogosearch:3.2.15:*:*:*:*:*:*:*", "matchCriteriaId": "DC0B97DE-941B-468A-8B32-424C6B6CCA73", "vulnerable": true}, {"criteria": "cpe:2.3:a:mnogosearch:mnogosearch:3.2.16:*:*:*:*:*:*:*", "matchCriteriaId": "7B8A5A71-CC7A-441D-88EB-E75476EB5139", "vulnerable": true}, {"criteria": "cpe:2.3:a:mnogosearch:mnogosearch:3.2.17:*:*:*:*:*:*:*", "matchCriteriaId": "F6405908-8877-4DC2-BA98-42FFEF6D3562", "vulnerable": true}, {"criteria": "cpe:2.3:a:mnogosearch:mnogosearch:3.2.18:*:*:*:*:*:*:*", "matchCriteriaId": "C16498CA-04E6-4B90-8E3D-7042B7658A30", "vulnerable": true}, {"criteria": "cpe:2.3:a:mnogosearch:mnogosearch:3.2.19:*:*:*:*:*:*:*", "matchCriteriaId": "B2BEAA1B-6000-4F4F-8078-A92B3A4F88C4", "vulnerable": true}, {"criteria": "cpe:2.3:a:mnogosearch:mnogosearch:3.2.20:*:*:*:*:*:*:*", "matchCriteriaId": "F01BBF30-C067-4EFD-B729-626DBEE0A83B", "vulnerable": true}, {"criteria": "cpe:2.3:a:mnogosearch:mnogosearch:3.2.21:*:*:*:*:*:*:*", "matchCriteriaId": "8DF71593-0430-4DBE-A148-ACE0323EB390", "vulnerable": true}, {"criteria": "cpe:2.3:a:mnogosearch:mnogosearch:3.2.22:*:*:*:*:*:*:*", "matchCriteriaId": "01E1E277-DF1C-4E34-85C8-32D11D12BA14", "vulnerable": true}, {"criteria": "cpe:2.3:a:mnogosearch:mnogosearch:3.2.23:*:*:*:*:*:*:*", "matchCriteriaId": "CFCBB03D-169C-4076-B392-92053D669FDF", "vulnerable": true}, {"criteria": "cpe:2.3:a:mnogosearch:mnogosearch:3.2.24:*:*:*:*:*:*:*", "matchCriteriaId": "1FDF2F47-A2F3-4DEF-A672-1FA9AD86007C", "vulnerable": true}, {"criteria": "cpe:2.3:a:mnogosearch:mnogosearch:3.2.25:*:*:*:*:*:*:*", "matchCriteriaId": "43ABF9A1-430F-41CB-AA26-2BC02DF3FD62", "vulnerable": true}, {"criteria": "cpe:2.3:a:mnogosearch:mnogosearch:3.2.26:*:*:*:*:*:*:*", "matchCriteriaId": "898CAFB1-1871-4EDB-A4D6-B49BA29F851E", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Multiple cross-site scripting (XSS) vulnerabilities in mnoGoSearch 3.2.26 and earlier allow remote attackers to inject arbitrary HTML and web script via the (1) next and (2) prev result search pages, and the (3) extended and (4) simple search forms."}], "id": "CVE-2004-1059", "lastModified": "2024-11-20T23:49:59.793", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2004-12-10T05:00:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-December/030222.html"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.mikx.de/index.php?p=6"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.mnogosearch.org/history.html"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.securityfocus.com/bid/11895"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18434"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-December/030222.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.mikx.de/index.php?p=6"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.mnogosearch.org/history.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.securityfocus.com/bid/11895"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18434"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}