Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-2011

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2002-2011
Last Modified 05 Sep 2008 04:32:05
Published 31 Dec 2002 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2002-2011

Summary

Cross-site scripting (XSS) vulnerability in the fom CGI program (fom.cgi) in Faq-O-Matic 2.711 and 2.712 allows remote attackers to inject arbitrary web script or HTML via the file parameter.

Vulnerable Systems

Application

  • Jon Howell Faq-o-matic 2.711

  • Jon Howell Faq-o-matic 2.712


References

BID - 4565

XF - faqomatic-cgi-file-css(8906)

BUGTRAQ - 20020419 Another Faq-O-Matic XSS Vuln?


Last Updated: 27 May 2016 10:37:34