Lucene search

MitreCVE-2002-0551

HistoryJul 03, 2002 - 4:00 a.m.

CVE-2002-0551

2002-07-0304:00:00

mitre

web.nvd.nist.gov

106

cve-2002-0551

cross-site scripting

dynamic guestbook 3.0

remote code execution

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

Confidence

High

EPSS

0.019

Percentile

88.5%

JSON

Cross-site scripting vulnerability in Dynamic Guestbook 3.0 allows remote attackers to execute code in clients who access guestbook pages via the parameters (1) name, (2) mail, or (3) kommentar.

Affected configurations

Nvd

Node

gcfdynamic_guestbookMatch3.0

VendorProductVersionCPE
gcfdynamic_guestbook3.0cpe:2.3:a:gcf:dynamic_guestbook:3.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
gcf	dynamic_guestbook	3.0	cpe:2.3:a:gcf:dynamic_guestbook:3.0:::::::*

References

archives.neohapsis.com/archives/bugtraq/2002-04/0052.html

www.iss.net/security_center/static/8763.php

www.securityfocus.com/bid/4422

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

Confidence

High

EPSS

0.019

Percentile

88.5%

JSON

Related for CVE-2002-0551