VYPR
Unrated severityNVD Advisory· Published Dec 23, 2004· Updated Jun 16, 2026

CVE-2004-0875

CVE-2004-0875

Description

Multiple cross-site scripting (XSS) vulnerabilities in Phpgroupware (aka webdistro) 0.9.16.002 and earlier allow remote attackers to insert arbitrary HTML or web script, as demonstrated with a request to the wiki module.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

10
  • cpe:2.3:a:phpgroupware:phpgroupware:0.9.12:*:*:*:*:*:*:*+ 9 more
    • cpe:2.3:a:phpgroupware:phpgroupware:0.9.12:*:*:*:*:*:*:*
    • cpe:2.3:a:phpgroupware:phpgroupware:0.9.13:*:*:*:*:*:*:*
    • cpe:2.3:a:phpgroupware:phpgroupware:0.9.14.003:*:*:*:*:*:*:*
    • cpe:2.3:a:phpgroupware:phpgroupware:0.9.14.005:*:*:*:*:*:*:*
    • cpe:2.3:a:phpgroupware:phpgroupware:0.9.14.006:*:*:*:*:*:*:*
    • cpe:2.3:a:phpgroupware:phpgroupware:0.9.14.007:*:*:*:*:*:*:*
    • cpe:2.3:a:phpgroupware:phpgroupware:0.9.16.000:*:*:*:*:*:*:*
    • cpe:2.3:a:phpgroupware:phpgroupware:0.9.16.002:*:*:*:*:*:*:*
    • cpe:2.3:a:phpgroupware:phpgroupware:0.9.16_rc1:*:*:*:*:*:*:*
    • (no CPE)range: <=0.9.16.002

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.