Lucene search
HistoryMay 16, 2002 - 4:00 a.m.
CVE-2002-0230
cve-2002-0230
xss
cross-site scripting
fom.cgi
faq-o-matic 2.712
nvd.
6.8 Medium
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.016 Low
EPSS
Percentile
87.2%
Cross-site scripting vulnerability in fom.cgi of Faq-O-Matic 2.712 allows remote attackers to execute arbitrary Javascript on other clients via the cmd parameter, which causes the script to be inserted into an error message.
| CPE | Name | Operator | Version |
|---|---|---|---|
| faq-o-matic:faq-o-matic | faq-o-matic | eq | 2.712 |
Related
nessus
nessus
Debian DSA-109-1 : faqomatic - XSS vulnerability
2004-09-29 00:00:00
Faq-O-Matic fom.cgi Multiple Parameter XSS
2004-10-21 00:00:00
Multiple Dangerous CGI Script Detection
2003-06-17 00:00:00
openvas
openvas
Debian Security Advisory DSA 109-1 (faqomatic)
2008-01-17 00:00:00
Faq-O-Matic fom.cgi XSS
2005-11-03 00:00:00
Various dangerous cgi scripts
2005-11-03 00:00:00
6.8 Medium
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.016 Low
EPSS
Percentile
87.2%
Related for CVE-2002-0230