Lucene search

[email protected]CVE-2002-1829

HistoryDec 31, 2002 - 5:00 a.m.

CVE-2002-1829

2002-12-3105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2002-1829

cross-site scripting

xss

open bulletin board

openbb 1.0.0 rc3

web script injection

html injection

5.8 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.003 Low

EPSS

Percentile

69.8%

JSON

Cross-site scripting (XSS) vulnerability in codeparse.php in Open Bulletin Board (OpenBB) 1.0.0 RC3 allows remote attackers to inject arbitrary web script or HTML via (1) myhome.php, (2) an onerror attribute in an IMG tag (a variant of CVE-2002-0330), or (3) a glow tag.

CPENameOperatorVersion
openbb:openbbopenbbeq1.0.0_rc3

CPE	Name	Operator	Version
openbb:openbb	openbb	eq	1.0.0_rc3

References

marc.info/?l=vuln-dev&m=102221487407632&w=2

www.securityfocus.com/bid/4819

exchange.xforce.ibmcloud.com/vulnerabilities/9160

5.8 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.003 Low

EPSS

Percentile

69.8%

JSON

Related for CVE-2002-1829

cve1 seebug1