Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Apr 16, 2026
CVE-2004-1845
CVE-2004-1845
Description
Multiple cross-site scripting (XSS) vulnerabilities in News Manager Lite 2.5 allow remote attackers to inject arbitrary web script or HTML via the (1) email parameter to comment_add.asp, (2) search parameter to search.asp, or (3) n parameter to category_news_headline.asp.
Affected products
1- cpe:2.3:a:expinion.net:news_manager_lite:2.5:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
8- secunia.com/advisories/11180nvdExploit
- www.osvdb.org/4492nvdExploit
- www.osvdb.org/4493nvdExploit
- www.osvdb.org/4494nvdExploit
- www.securityfocus.com/bid/9935nvdExploit
- marc.infonvd
- securitytracker.com/idnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/15548nvd
News mentions
0No linked articles in our index yet.