CVE-2001-1526

2005-07-1404:00:00

mitre

www.cve.org

cross-site scripting

easynews

index.php

remote attacks

web script

html

zeit parameter

AI Score

5.7

Confidence

High

EPSS

0.002

Percentile

57.0%

JSON

Cross-site scripting (XSS) vulnerability in the comments action in index.php in easyNews 1.5 and earlier allows remote attackers to inject arbitrary web script or HTML via the zeit parameter.

References

archives.neohapsis.com/archives/bugtraq/2001-12/0000.html

www.iss.net/security_center/static/7658.php