exploitDog

CVE-2002-1480

Опубликовано: 22 апр. 2003

Источник: nvd

CVSS2: 6.8

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in phpGB before 1.20 allows remote attackers to inject arbitrary HTML or script into guestbook pages, which is executed when the administrator deletes the entry.

Ссылки

http://archives.neohapsis.com/archives/bugtraq/2002-09/0069.html
Exploit
Patch
Vendor Advisory
http://www.iss.net/security_center/static/10060.php
Patch
Vendor Advisory
http://www.securityfocus.com/bid/5676
Exploit
Patch
Vendor Advisory
http://archives.neohapsis.com/archives/bugtraq/2002-09/0069.html
Exploit
Patch
Vendor Advisory
http://www.iss.net/security_center/static/10060.php
Patch
Vendor Advisory
http://www.securityfocus.com/bid/5676
Exploit
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:phpgb:phpgb:1.10:*:*:*:*:*:*:*

EPSS

Процентиль: 74%

0.00879

Низкий

6.8 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-76j9-m8j4-74fx

github

больше 3 лет назад

Cross-site scripting (XSS) vulnerability in phpGB before 1.20 allows remote attackers to inject arbitrary HTML or script into guestbook pages, which is executed when the administrator deletes the entry.

EPSS

Процентиль: 74%

0.00879

Низкий

6.8 Medium

CVSS2

Дефекты

NVD-CWE-Other