VYPR
← All advisories
Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Apr 16, 2026

CVE-2004-1837

CVE-2004-1837

Description

Cross-site scripting (XSS) vulnerability in Mod_survey 3.0.x before 3.0.16-pre2 and 3.2.x before 3.2.0-pre4 allows remote attackers to inject arbitrary web script or HTML via the certain survey fields or error messages for malformed query strings.

Affected products

26
  • Joel Palmius/Mod Survey26 versions
    cpe:2.3:a:joel_palmius:mod_survey:3.0.0:*:*:*:*:*:*:*+ 25 more
    • cpe:2.3:a:joel_palmius:mod_survey:3.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:joel_palmius:mod_survey:3.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:joel_palmius:mod_survey:3.0.10:*:*:*:*:*:*:*
    • cpe:2.3:a:joel_palmius:mod_survey:3.0.11:*:*:*:*:*:*:*
    • cpe:2.3:a:joel_palmius:mod_survey:3.0.12:*:*:*:*:*:*:*
    • cpe:2.3:a:joel_palmius:mod_survey:3.0.13:*:*:*:*:*:*:*
    • cpe:2.3:a:joel_palmius:mod_survey:3.0.14:*:*:*:*:*:*:*
    • cpe:2.3:a:joel_palmius:mod_survey:3.0.14d:*:*:*:*:*:*:*
    • cpe:2.3:a:joel_palmius:mod_survey:3.0.14e:*:*:*:*:*:*:*
    • cpe:2.3:a:joel_palmius:mod_survey:3.0.15:*:*:*:*:*:*:*
    • cpe:2.3:a:joel_palmius:mod_survey:3.0.15_pre1:*:*:*:*:*:*:*
    • cpe:2.3:a:joel_palmius:mod_survey:3.0.15_pre2:*:*:*:*:*:*:*
    • cpe:2.3:a:joel_palmius:mod_survey:3.0.15_pre3:*:*:*:*:*:*:*
    • cpe:2.3:a:joel_palmius:mod_survey:3.0.15_pre4:*:*:*:*:*:*:*
    • cpe:2.3:a:joel_palmius:mod_survey:3.0.15_pre5:*:*:*:*:*:*:*
    • cpe:2.3:a:joel_palmius:mod_survey:3.0.15_pre6:*:*:*:*:*:*:*
    • cpe:2.3:a:joel_palmius:mod_survey:3.0.16_pre1:*:*:*:*:*:*:*
    • cpe:2.3:a:joel_palmius:mod_survey:3.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:joel_palmius:mod_survey:3.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:joel_palmius:mod_survey:3.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:joel_palmius:mod_survey:3.0.5:*:*:*:*:*:*:*
    • cpe:2.3:a:joel_palmius:mod_survey:3.0.6:*:*:*:*:*:*:*
    • cpe:2.3:a:joel_palmius:mod_survey:3.0.9:*:*:*:*:*:*:*
    • cpe:2.3:a:joel_palmius:mod_survey:3.2.0_pre1:*:*:*:*:*:*:*
    • cpe:2.3:a:joel_palmius:mod_survey:3.2.0_pre2:*:*:*:*:*:*:*
    • cpe:2.3:a:joel_palmius:mod_survey:3.2.0_pre3:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

4

News mentions

0

No linked articles in our index yet.