Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0457

Overview

Vulnerability Score 7.6 7.6
CVE Id CVE-2002-0457
Last Modified 05 Sep 2008 04:28:04
Published 12 Aug 2002 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2002-0457

Summary

Cross-site scripting vulnerability in signgbook.php for BG GuestBook 1.0 allows remote attackers to execute arbitrary Javascript via encoded tags such as <, >, and & in fields such as (1) name, (2) email, (3) AIM screen name, (4) website, (5) location, or (6) message.

Vulnerable Systems

Application

  • Bg Guestbook 1.0


References

BID - 4308

XF - bgguestbook-post-css(8474)

BUGTRAQ - 20020316 [ARL02-A08] BG Guestbook Cross Site Scripting Vulnerability


Last Updated: 27 May 2016 10:36:54