MidnightBSD

Advisories for vcard4j

CVE-2004-1794 MEDIUM

Cross-site scripting (XSS) vulnerability in the VCard4J Toolkit allows remote attackers to inject arbitrary web script or HTML via the NICKNAME tag in a vCard.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
vcard4j vcard4j 1.1
vcard4j vcard4j 1.1.2
vcard4j vcard4j 1.1.3
vcard4j vcard4j 0.2
vcard4j vcard4j 1.0
vcard4j vcard4j 0.1
vcard4j vcard4j 1.1.1