CVE-2004-2548

EPSS 12.82% · P94 Updated Feb 27, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2004-2548

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Multiple cross-site scripting (XSS) vulnerabilities in NetWin (1) SurgeMail before 2.0c and (2) WebMail allow remote attackers to inject arbitrary web script or HTML via (a) a URI containing the script, or (b) the username field in the login form. NOTE: it is possible that the first attack vector is resultant from the error message issue (CVE-2004-2547).

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

NetWin SurgeMail/WebMail多个输入验证漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

NetWin SurgeMail/WebMail是基于WEB的邮件服务程序。 NetWin SurgeMail/WebMail多处不正确处理用户提供数据，远程攻击者可以利用这个漏洞获得敏感路径信息和进行跨站脚本攻击。提交不存在的文件请求会导致敏感信息泄露，而对程序监听的7080端口，对恶意HTML字符缺少充分过滤，可导致跨站脚本攻击，泄露敏感信息。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2004-2548

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2004-2548

Please Login to view more intelligence information

http://www.netwinsite.com/surgemail/help/updates.htmx_refsource_MISC
http://www.exploitlabs.com/files/advisories/EXPL-A-2004-002-surgmail.txtx_refsource_MISC
http://www.osvdb.org/6746vdb-entryx_refsource_OSVDB
http://secunia.com/advisories/11772third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/10483vdb-entryx_refsource_BID
https://exchange.xforce.ibmcloud.com/vulnerabilities/16320vdb-entryx_refsource_XF
http://archives.neohapsis.com/archives/fulldisclosure/2004-06/0056.htmlmailing-listx_refsource_FULLDISC
https://nvd.nist.gov/vuln/detail/CVE-2004-2548

Same Patch Batch · n/a · 2005-11-21 · 37 CVEs total

CVE-2005-3723		Hitachi IP5000 VOIP WIFI电话不能禁用SNMP和TCP3390漏洞
CVE-2005-3715		Senao SI-680H VOIP WIFI电话VxWorks远程调试器访问漏洞
CVE-2005-3716		UTStarcom F1000 VOIP WIFI电话SNMP守护进程信息泄露漏洞
CVE-2005-3717		UTStarcom F1000 VOIP WIFI电话telnet默认用户名密码漏洞
CVE-2005-3718		UTStarcom F1000 VOIP WIFI电话可利用其它漏洞攻击漏洞
CVE-2005-3719		Hitachi IP5000 VOIP WIFI 电话硬编码的管理员密码漏洞
CVE-2005-3720		Hitachi IP5000 VOIP WIFI 电话敏感信息泄露漏洞
CVE-2005-3721		Hitachi IP5000 VOIP WIFI电话敏感配置页面不需要认证漏洞
CVE-2005-3722		Hitachi IP5000 VOIP WIFI 电话SNMP 守护程序权限提升漏洞
CVE-2005-3699		Opera Web Browser可信站点链接图像欺骗状态栏URL漏洞
CVE-2005-3724		Zyxel P2000W VOIP WIFI电话信息泄露漏洞
CVE-2005-3725		Zyxel P2000W VOIP WIFI电话拒绝服务与信息泄露漏洞
CVE-2005-3726		Interspire ArticleLive NX搜索模块SQL注入漏洞
CVE-2005-3727		Revize CMS query_results.jsp远程SQL注入漏洞
CVE-2005-3728		Idetix Software Systems Revize CMS配置信息泄露漏洞
CVE-2005-3729		Idetix Software Systems Revize CMS信息泄露漏洞
CVE-2005-3730		Revize CMS HTTPTranslatorServlet多个跨站脚本漏洞
CVE-2005-3731		yaSSL未明漏洞
CVE-2004-2552		Xboard缓冲区溢出漏洞
CVE-2005-3733		Juniper路由器ISAKMP IKE通讯多个安全漏洞

Showing top 20 of 37 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2004-2548

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2004-2548

I. Basic Information for CVE-2004-2548

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2004-2548

III. Intelligence Information for CVE-2004-2548

Same Patch Batch · n/a · 2005-11-21 · 37 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2004-2548

Leave a comment