VYPR
Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Jun 16, 2026

CVE-2004-2566

CVE-2004-2566

Description

Multiple cross-site scripting (XSS) vulnerabilities in LiveWorld products, possibly including (1) LiveForum, (2) LiveQ&A, (3) LiveChat, and (4) LiveFocusGroup, allow remote attackers to inject arbitrary web script or HTML via the q parameter in (a) search.jsp, (b) findclub!execute.jspa, and (c) search!execute.jspa.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

7
  • Livechat/Livechat2 versions
    cpe:2.3:a:liveworld:livechat:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:liveworld:livechat:*:*:*:*:*:*:*:*
    • (no CPE)
  • cpe:2.3:a:liveworld:livefocusgroup:*:*:*:*:*:*:*:*
  • cpe:2.3:a:liveworld:liveforum:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:liveworld:liveforum:*:*:*:*:*:*:*:*
    • (no CPE)
  • Livechat/LiveQ&A2 versions
    cpe:2.3:a:liveworld:liveq_and_a:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:liveworld:liveq_and_a:*:*:*:*:*:*:*:*
    • (no CPE)

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.