CVE-2004-1410
Gadu-Gadu Instant Messenger - Cross-Site Scripting via URL Parsing Error Popup
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2004-1410. PoCs published by Jaroslaw Sajko.
AI-analyzed exploit summary The provided text describes an HTML injection and DoS vulnerability in Gadu-Gadu instant messenger, with a PoC URL demonstrating the HTML injection via a malformed style attribute. No executable exploit code is present.
Description
Cross-site scripting (XSS) vulnerability in Gadu-Gadu build 155 and earlier allows remote attackers to inject arbitrary web script via a URL, which is echoed in a popup window that displays a parsing error message, a different vulnerability than CVE-2004-1229.
Exploits (1)
The provided text describes an HTML injection and DoS vulnerability in Gadu-Gadu instant messenger, with a PoC URL demonstrating the HTML injection via a malformed style attribute. No executable exploit code is present.