Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Apr 16, 2026

CVE-2004-2522

Description

Cross-site scripting (XSS) vulnerability in web.tmpl in Gattaca Server 2003 1.1.10.0 allows remote attackers to inject arbitrary web script or HTML via the (1) template or (2) language parameter.

Affected products

Geeos Team/Gattaca Server 2003
cpe:2.3:o:geeos_team:gattaca_server_2003:1.1.10.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/12071nvdExploitVendor Advisory
securitytracker.com/idnvdExploit
www.osvdb.org/7927nvdExploit
www.securityfocus.com/bid/10731nvdExploit
members.lycos.co.uk/r34ct/main/Gattaca%20Server%202003.txtnvdVendor Advisory
www.gattaca-server.com/cgi-bin/yabb/YaBB.plnvd
exchange.xforce.ibmcloud.com/vulnerabilities/16701nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000