exploitDog

CVE-2002-1009

Опубликовано: 04 окт. 2002

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Cross-site scripting vulnerability in PowerBASIC pbcgi.cgi, as included in Lil' HTTP web server, allows remote attackers to execute arbitrary web script in other web browsers via the (1) "Name" or (2) "E-mail" parameters.

Ссылки

http://archives.neohapsis.com/archives/bugtraq/2002-07/0112.html
http://www.iss.net/security_center/static/9548.php
Vendor Advisory
http://www.securityfocus.com/bid/5211
Exploit
Vendor Advisory
http://archives.neohapsis.com/archives/bugtraq/2002-07/0112.html
http://www.iss.net/security_center/static/9548.php
Vendor Advisory
http://www.securityfocus.com/bid/5211
Exploit
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:summit_computer_networks:lil_http_server:2.1:*:*:*:*:*:*:*

cpe:2.3:a:summit_computer_networks:lil_http_server:2.2:*:*:*:*:*:*:*

EPSS

Процентиль: 86%

0.03062

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-p3xh-qp8h-hq67

github

почти 4 года назад

Cross-site scripting vulnerability in PowerBASIC pbcgi.cgi, as included in Lil' HTTP web server, allows remote attackers to execute arbitrary web script in other web browsers via the (1) "Name" or (2) "E-mail" parameters.

EPSS

Процентиль: 86%

0.03062

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other