Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Jun 16, 2026
CVE-2004-1146
CVE-2004-1146
Description
Multiple cross-site scripting (XSS) vulnerabilities in (1) main.c and (2) login.c for CVSTrac before 1.1.5 allow remote attackers to inject arbitrary HTML and web script.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:a:cvstrac:cvstrac:1.1:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:cvstrac:cvstrac:1.1:*:*:*:*:*:*:*
- cpe:2.3:a:cvstrac:cvstrac:1.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:cvstrac:cvstrac:1.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:cvstrac:cvstrac:1.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:cvstrac:cvstrac:1.1.4:*:*:*:*:*:*:*
- (no CPE)range: <1.1.5
Patches
Vulnerability mechanics
References
7News mentions
0No linked articles in our index yet.