Back to search
CVE-2004-2563
Published: Nov 22, 2005
Modified: Aug 8, 2024
PUBLISHED
Description
Serena TeamTrack 6.1.1 allows remote attackers to obtain sensitive information such as user names, versions, and database information, and conduct cross-site scripting (XSS) attacks, via a direct request to tmtrack.dll with modified LoginPage and Template parameters.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
8185
vdb-entry
x_refsource_OSVDB
teamtrack-loginpage-information-disclosure(16777)
vdb-entry
x_refsource_XF
teamtrack-tmtrackdll-xss(16771)
vdb-entry
x_refsource_XF
12122
third-party-advisory
x_refsource_SECUNIA
10770
vdb-entry
x_refsource_BID
8183
vdb-entry
x_refsource_OSVDB
http://www.securiteam.com/windowsntfocus/5SP0O0ADGG.html
x_refsource_MISC
8182
vdb-entry
x_refsource_OSVDB
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now