Lucene search

[email protected]CVE-2003-0763

HistorySep 17, 2003 - 4:00 a.m.

CVE-2003-0763

2003-09-1704:00:00

[email protected]

web.nvd.nist.gov

cve-2003-0763

cross-site scripting

xss

escapade scripting engine

esp

remote attackers

arbitrary script

page parameter

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.9 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

50.2%

JSON

Cross-site scripting (XSS) vulnerability in Escapade Scripting Engine (ESP) allows remote attackers to inject arbitrary script via the method parameter, as demonstrated using the PAGE parameter.

Affected configurations

NVD

Node

squished_mosquitoescapade

CPENameOperatorVersion
squished_mosquito:escapadesquished mosquito escapadeeq*

CPE	Name	Operator	Version
squished_mosquito:escapade	squished mosquito escapade	eq	*

References

marc.info/?l=bugtraq&m=106312344631197&w=2

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.9 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

50.2%

JSON

Related for CVE-2003-0763

cvelist1 nvd1