Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-2424

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2002-2424
Last Modified 05 Sep 2008 04:33:11
Published 31 Dec 2002 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2002-2424

Summary

Cross-site scripting (XSS) vulnerability in PHP(Reactor) 1.2.7 pl1 allows remote attackers to inject arbitrary web script or HTML via Javascript in the style attribute of an HTML tag.

Vulnerable Systems

Application

  • Ekilat Llc Php%28reactor%29 1.27pl1


References

BID - 5569

XF - phpreactor-style-xss(9958)

BUGTRAQ - 20020824 phpReactor - Cross-Site Scripting via STYLE


Last Updated: 27 May 2016 10:37:44