Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0730

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2002-0730
Last Modified 05 Sep 2008 04:28:48
Published 12 Aug 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0730

Summary

Cross-site scripting vulnerability in guestbook.pl for Philip Chinery's Guestbook 1.1 allows remote attackers to execute Javascript or HTML via fields such as (1) Name, (2) EMail, or (3) Homepage.

Vulnerable Systems

Application

  • Philip Chinerys Guestbook 1.1


References

BID - 4566

XF - guestbook-pl-css(8916)

BUGTRAQ - 20020421 Philip Chinery's Guestbook 1.1 fails to filter out js/html


Last Updated: 27 May 2016 10:37:03