Arbitrary Script Execution via TBE 5.0 HTML Banner View/Preview XSS Vulnerability

Arbitrary Script Execution via TBE 5.0 HTML Banner View/Preview XSS Vulnerability

CVE-2004-2098 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in the banner engine (TBE) 5.0 allows remote attackers to execute arbitrary script as other users via the HTML banner view/preview capability.

Learn more about our User Device Pen Test.