exploitDog

CVE-2002-1651

Опубликовано: 31 дек. 2002

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in Verity Search97 allows remote attackers to insert arbitrary web content and steal sensitive information from other clients, possibly due to certain error messages from template pages that use the (1) vformat or (2) vfilter functions.

Ссылки

http://www.kb.cert.org/vuls/id/636431
Patch
US Government Resource
http://www.securityfocus.com/bid/5102
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/9441
http://www.kb.cert.org/vuls/id/636431
Patch
US Government Resource
http://www.securityfocus.com/bid/5102
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/9441

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:verity:search97:2.1:*:*:*:*:*:*:*

EPSS

Процентиль: 83%

0.01926

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-fxwx-9wgp-c8f8

github

почти 4 года назад

Cross-site scripting (XSS) vulnerability in Verity Search97 allows remote attackers to insert arbitrary web content and steal sensitive information from other clients, possibly due to certain error messages from template pages that use the (1) vformat or (2) vfilter functions.

EPSS

Процентиль: 83%

0.01926

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79