Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Jun 16, 2026
CVE-2004-1563
CVE-2004-1563
Description
Multiple cross-site scripting (XSS) vulnerabilities in w-Agora 4.1.6a allow remote attackers to execute arbitrary web script or HTML via the (1) thread parameter to download_thread.php, (2) loginuser parameter to login.php, or (3) userid parameter to forgot_password.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
6- secunia.com/advisories/12695nvdPatchVendor Advisory
- lists.grok.org.uk/pipermail/full-disclosure/2004-September/027040.htmlnvdExploitVendor Advisory
- www.securityfocus.com/bid/11283nvdExploit
- marc.infonvd
- securitytracker.com/idnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/17553nvd
News mentions
0No linked articles in our index yet.