CVE-2001-0970

Опубликовано: 31 авг. 2001

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Cross-site scripting vulnerability in TDForum 1.2 CGI script (tdforum12.cgi) allows remote attackers to execute arbitrary script on other clients via a forum message that contains the script.

Ссылки

http://archives.neohapsis.com/archives/bugtraq/2001-08/0281.html
http://marc.info/?l=bugtraq&m=99832137410609&w=2
http://www.kb.cert.org/vuls/id/782243
Third Party Advisory
US Government Resource
http://www.securityfocus.com/bid/3207
https://exchange.xforce.ibmcloud.com/vulnerabilities/7009
http://archives.neohapsis.com/archives/bugtraq/2001-08/0281.html
http://marc.info/?l=bugtraq&m=99832137410609&w=2
http://www.kb.cert.org/vuls/id/782243
Third Party Advisory
US Government Resource
http://www.securityfocus.com/bid/3207
https://exchange.xforce.ibmcloud.com/vulnerabilities/7009

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:tdavid:td_forum:1.2:*:*:*:*:*:*:*

EPSS

Процентиль: 81%

0.01611

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-fcx5-32pw-vf4j

github

почти 4 года назад