{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-16T22:32:03.620","vulnerabilities":[{"cve":{"id":"CVE-2004-2031","sourceIdentifier":"cve@mitre.org","published":"2004-05-21T04:00:00.000","lastModified":"2026-04-16T00:27:16.627","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-site scripting (XSS) vulnerability in user.php in e107 allows remote attackers to inject arbitrary web script or HTML via the (1) URL, (2) MSN, or (3) AIM fields."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:e107:e107:0.545:*:*:*:*:*:*:*","matchCriteriaId":"8DDD8B3B-8580-4624-8D77-E3FD97DFF4A6"},{"vulnerable":true,"criteria":"cpe:2.3:a:e107:e107:0.554:*:*:*:*:*:*:*","matchCriteriaId":"6454D949-83A2-4F69-92E1-BBCD84F21BC2"},{"vulnerable":true,"criteria":"cpe:2.3:a:e107:e107:0.555_beta:*:*:*:*:*:*:*","matchCriteriaId":"CC274184-AD8E-4BC2-BC6A-4E64F354BFFD"},{"vulnerable":true,"criteria":"cpe:2.3:a:e107:e107:0.603:*:*:*:*:*:*:*","matchCriteriaId":"F8692341-8DF2-4943-853A-4AAF1F313914"},{"vulnerable":true,"criteria":"cpe:2.3:a:e107:e107:0.610:*:*:*:*:*:*:*","matchCriteriaId":"04C91C45-9A96-4E69-8A0A-D619AB45BC08"},{"vulnerable":true,"criteria":"cpe:2.3:a:e107:e107:0.611:*:*:*:*:*:*:*","matchCriteriaId":"5F7C68F4-9ECD-41A9-B4AE-48F028841428"},{"vulnerable":true,"criteria":"cpe:2.3:a:e107:e107:0.612:*:*:*:*:*:*:*","matchCriteriaId":"28B75E28-08DE-4CA2-A60B-FB2F61AEC5BA"},{"vulnerable":true,"criteria":"cpe:2.3:a:e107:e107:0.613:*:*:*:*:*:*:*","matchCriteriaId":"B9AA824A-CEE6-460B-A668-92FC3A822305"},{"vulnerable":true,"criteria":"cpe:2.3:a:e107:e107:0.614:*:*:*:*:*:*:*","matchCriteriaId":"6A51FBB3-42CE-40E1-A15D-ADDFBF8E203D"},{"vulnerable":true,"criteria":"cpe:2.3:a:e107:e107:0.615:*:*:*:*:*:*:*","matchCriteriaId":"BEAC1FD5-ECD1-480C-827E-F1AE8484C4EA"},{"vulnerable":true,"criteria":"cpe:2.3:a:e107:e107:0.615a:*:*:*:*:*:*:*","matchCriteriaId":"D17F613A-6BE1-4B45-8E40-8E44E0EEA756"}]}]}],"references":[{"url":"http://marc.info/?l=bugtraq&m=108541119526279&w=2","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/11696","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://www.osvdb.org/6410","source":"cve@mitre.org","tags":["Exploit","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/10405","source":"cve@mitre.org","tags":["Exploit","Vendor Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/16241","source":"cve@mitre.org"},{"url":"http://marc.info/?l=bugtraq&m=108541119526279&w=2","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/11696","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www.osvdb.org/6410","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/10405","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Vendor Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/16241","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}